Lucene search
K

62 matches found

SUSE Linux
SUSE Linux
added 2025/08/14 10:15 a.m.2 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2025-5918: reading past EOF may be triggered for piped file streams bsc1244279 CVE-2025-5917: off by one error in buildustarentryname at archivewritesetformatpax.c bsc1244336 CVE-2025-5916: integer overflow while reading warc files at...

7.3CVSS7.5AI score0.00341EPSS
Exploits2References20
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-5916

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC...

5.6CVSS6.4AI score0.00155EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/08/06 1:55 p.m.4 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 CVE-2025-5915: Fixed heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c bsc1244273 CVE-2025-5916:...

4.6CVSS7.1AI score0.00341EPSS
Exploits2References20
SUSE Linux
SUSE Linux
added 2025/07/31 7:19 a.m.7 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 CVE-2025-5915: Fixed heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c bsc1244273 CVE-2025-5916:...

4.6CVSS7.1AI score0.00341EPSS
Exploits2References20
SUSE Linux
SUSE Linux
added 2025/07/25 9:4 a.m.5 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2025-5916, Fixed integer overflow while reading warc files at archivereadsupportformatwarc.c bsc1244270 CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 Patch Instructions...

4.6CVSS7AI score0.00326EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2025/07/01 12:0 a.m.23 views

Ubuntu 22.04 LTS / 24.04 LTS / 24.10 / 25.04 : libarchive vulnerabilities (USN-7601-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7601-1 advisory. It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could possibly use this issue to...

7.8CVSS6.6AI score0.00326EPSS
Exploits2References5
Ubuntu
Ubuntu
added 2025/06/26 11:6 a.m.8 views

USN-7601-1: libarchive vulnerabilities

It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service. CVE-2025-5914 It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could...

7.8CVSS6.6AI score0.00326EPSS
Exploits2
OSV
OSV
added 2025/06/26 11:6 a.m.6 views

USN-7601-1 libarchive vulnerabilities

It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service. CVE-2025-5914 It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could...

7.8CVSS6.9AI score0.00326EPSS
Exploits2References5
OSV
OSV
added 2025/06/20 1:26 p.m.3 views

OESA-2025-1656 libarchive security update

is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats, including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use . Security...

7.8CVSS7.1AI score0.00341EPSS
Exploits2References5
OSV
OSV
added 2025/06/09 8:15 p.m.5 views

AZL-63774 CVE-2025-5916 affecting package libarchive for versions less than 3.7.7-3

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

5.6CVSS6.3AI score0.00155EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/06/09 8:15 p.m.3 views

CVE-2025-5916

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

5.6CVSS7.3AI score0.00155EPSS
Exploits0References4
OSV
OSV
added 2025/06/09 8:15 p.m.0 views

DEBIAN-CVE-2025-5916

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

5.6CVSS5AI score0.00155EPSS
Exploits0References1
OSV
OSV
added 2025/06/09 8:15 p.m.7 views

AZL-63759 CVE-2025-5916 affecting package cmake for versions less than 3.30.3-8

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

5.6CVSS6.3AI score0.00155EPSS
Exploits0References1
OSV
OSV
added 2025/06/09 8:15 p.m.8 views

AZL-63824 CVE-2025-5916 affecting package cmake for versions less than 3.21.4-20

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

5.6CVSS6.3AI score0.00155EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/09 7:49 p.m.32 views

CVE-2025-5916 Libarchive: integer overflow while reading warc files at archive_read_support_format_warc.c

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

3.9CVSS0.00155EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/06/09 7:49 p.m.2 views

CVE-2025-5916 Libarchive: integer overflow while reading warc files at archive_read_support_format_warc.c

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

3.9CVSS4.7AI score0.00155EPSS
Exploits0References4
OSV
OSV
added 2025/06/09 7:49 p.m.5 views

CVE-2025-5916 Libarchive: integer overflow while reading warc files at archive_read_support_format_warc.c

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive WARC file that claims to have more than INT64MAX - 4 content bytes. An attacker could craft a malicious WARC archive to induce this overflow,...

3.9CVSS6.3AI score0.00155EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/06/09 12:0 a.m.5 views

libarchive 输入验证错误漏洞

libarchive is a multi-format archive and compression library open-sourced by libarchive. An input validation error vulnerability exists in libarchive that stems from an integer overflow when processing WARC files, which could result in memory corruption or a denial of service...

5.6CVSS5.1AI score0.00155EPSS
Exploits0References5
Snyk
Snyk
added 2025/05/20 12:0 a.m.4 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the archivereadsupportformatwarc.c process. An attacker can cause memory corruption or unpredictable program behavior by supplying a specially crafted WARC file with an excessively large content length...

5.6CVSS7.1AI score0.00155EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2024/10/25 8:17 p.m.20 views

K000148256: libarchive vulnerability CVE-2018-1000880

Security Advisory Description libarchive version commit 9693801580c0cf7c70e862d305270a16b52826a7 onwards release v3.2.0 onwards contains a CWE-20: Improper Input Validation vulnerability in WARC parser - libarchive/archivereadsupportformatwarc.c, warcread that can result in DoS - quasi-infinite r...

6.5CVSS6.7AI score0.04056EPSS
Exploits0Affected Software13
Rows per page
Query Builder