Astra Linux - уязвимость в unrar-nonfree

RARLAB WinRAR Recovery Volume: Improper validation of array index leads to remote code execution vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability, as the targe...

Astra Linux - уязвимость в unrar-nonfree

RARLAB WinRAR prior to version 7.00, on Linux and UNIX platforms, allowed attackers to spoof the screen output or cause a denial of service, through ANSI escape sequences...

Astra Linux - уязвимость в unrar-nonfree

UnRAR before version 6.2.3 allowed extraction of files outside of the destination folder using symlink chains...

Astra Linux - уязвимость в unrar-nonfree

RARLAB’s UnRAR version prior to 6.12 on Linux and UNIX allowed directory traversal, enabling writing to files during an extraction operation also known as unpacking. This was demonstrated by creating a file named /.ssh/authorizedkeys. NOTE: WinRAR and Android RAR are not affected by this issue...

SUSE CVE-2026-24857

bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor's embedded unrar code has a heap-buffer-overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out-of-bounds write in Unpack::CopyString, leading to a crash under ASAN and...

CVE-2026-24857

CVE-2026-24857 affects bulk_extractor (bulk extractor). Starting in version 1.4, the embedded unrar code has a heap-buffer-overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image can trigger an out-of-bounds write in Unpack::CopyString, causing a crash under ASAN and likely me...

EUVD-2026-4855

bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor’s embedded unrar code has a heap‑buffer‑overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out‑of‑bounds write in Unpack::CopyString, leading to a crash under ASAN and...

PT-2026-5229

Name of the Vulnerable Software and Affected Versions bulk extractor versions 1.4 and later Description bulk extractor is a digital forensics exploitation tool. The embedded unrar code within bulk extractor, starting with version 1.4, contains a heap-buffer-overflow in the RAR PPM LZ decoding pat...

Building bulk_extractor security vulnerabilities

Building bulkextractor is a high-performance digital forensics analysis tool developed by Simson L. Garfinkel. Versions of Building bulkextractor 1.4 and later contain security vulnerabilities. These vulnerabilities stem from an overflow in the heap buffer in the embedded unrar code’s RAR PPM LZ...

CVE-2017-12938

UnRAR before 5.5.7 allows remote attackers to bypass a directory-traversal protection mechanism via vectors involving a symlink to the . directory, a symlink to the .. directory, and a regular file...

EUVD-2017-11021

Malware in sbrugna...

EUVD-2017-5634

Malware in sbrugna...

EUVD-2017-4465

Malware in sbrugna...

EUVD-2017-5632

Malware in sbrugna...

EUVD-2017-4462

Malware in sbrugna...

EUVD-2018-13799

Malware in sbrugna...

EUVD-2017-5633

Malware in sbrugna...

EUVD-2012-6548

Malware in sbrugna...

EUVD-2022-51275

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2017-11189

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - unrarlib.c in unrar-free 0.0.1 might allow remote attackers to cause a denial of service NULL pointer dereference and application crash, which could be relevant...