Ubuntu.comUB:CVE-2022-36227CVE-2022-36227
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.3%
In libarchive before 3.6.2, the software does not check for an error after
calling calloc function that can return with a NULL pointer if the function
fails, which leads to a resultant NULL pointer dereference. NOTE: the
discoverer cites this CWE-476 remark but third parties dispute the
code-execution impact: “In rare circumstances, when NULL is equivalent to
the 0x0 memory address and privileged code can access it, then writing or
reading memory is possible, which may lead to code execution.”
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | most likely a denial of service only |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | libarchive | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | libarchive | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | libarchive | < any | UNKNOWN |
| ubuntu | 14.04 | noarch | libarchive | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | libarchive | < any | UNKNOWN |
Related
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.3%