The process_add_entry function in archive_read_support_format_mtree.c in
libarchive before 3.2.0 allows remote attackers to cause a denial of
service (out-of-bounds read) via a crafted mtree file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 14.04 | noarch | libarchive | <Â 3.1.2-7ubuntu2.3 | UNKNOWN |
ubuntu | 15.10 | noarch | libarchive | <Â 3.1.2-11ubuntu0.15.10.2 | UNKNOWN |
ubuntu | 16.04 | noarch | libarchive | <Â 3.1.2-11ubuntu0.16.04.2 | UNKNOWN |