3153 matches found
FreeBSD Security Advisory FreeBSD-SA-07:05.libarchive
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-07:05.libarchive Security Advisory The FreeBSD Project Topic: Errors handling corrupt tar files in libarchive3 Category: core Module: libarchive Announced:...
libarchive multiple security vulnerabilities
Memory corruption, buffer overflow, NULL pointer dereference...
FreeBSD-SA-07:05.libarchive
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-07:05.libarchive Security Advisory The FreeBSD Project Topic: Errors handling corrupt tar files in libarchive3 Category: core Module: libarchive Announced:...
FreeBSD : libarchive -- Infinite loop in corrupt archives handling in libarchive (792bc222-c5d7-11db-9f82-000e0c2e438a)
If the end of an archive is reached while attempting to 'skip' past a region of an archive, libarchive will enter an infinite loop wherein it repeatedly attempts and fails to read further data. Impact : An attacker able to cause a system to extract via 'tar -x' or another application which uses...
gtar -- name mangling symlink vulnerability
Problem Description: Symlinks created using the "GNUTYPENAMES" tar extension can be absolute due to lack of proper sanity checks. Impact: If an attacker can get a user to extract a specially crafted tar archive the attacker can overwrite arbitrary files with the permissions of the user running...
CVE-2006-5680
The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...
CVE-2006-5680
The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...
DEBIAN-CVE-2006-5680
The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...
libarchive library DoS
End of archive during region skipping causes infinite loop...
FreeBSD Security Advisory FreeBSD-SA-06:24.libarchive
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:24.libarchive Security Advisory The FreeBSD Project Topic: Infinite loop in corrupt archives handling in libarchive3 Category: core Module: libarchive Announce...
CVE-2006-5680
The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service CPU consumption via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop tha...
FreeBSD-SA-06:24.libarchive
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:24.libarchive Security Advisory The FreeBSD Project Topic: Infinite loop in corrupt archives handling in libarchive3 Category: core Module: libarchive...
libarchive -- Infinite loop in corrupt archives handling in libarchive
Problem Description: If the end of an archive is reached while attempting to "skip" past a region of an archive, libarchive will enter an infinite loop wherein it repeatedly attempts and fails to read further data. Impact: An attacker able to cause a system to extract via "tar -x" or another...