2 matches found
libarchive -- multiple vulnerabilities
Hanno Bock and Cisco Talos report: Out of bounds heap read in RAR parser Signed integer overflow in ISO parser TALOS-2016-0152 CVE-2016-4300: 7-Zip readSubStreamsInfo Integer Overflow TALOS-2016-0153 CVE-2016-4301: mtree parsedevice Stack Based Buffer Overflow TALOS-2016-0154 CVE-2016-4302:...
libarchive mtree parse_device function stack buffer overflow vulnerability
libarchive is a multi-format archive and compression library. A stack buffer overflow vulnerability exists in the mtree parsedevice function in libarchive version 3.1.2. An attacker can exploit this vulnerability with a specially crafted mtree file to cause a denial of service memory corruption, ...