EPSS
Percentile
79.1%
libarchive.so is vulnerable to denial of service (DoS) attacks. A malicious user can pass an archive file to the lha_read_file_header_1 function in archive_read_support_format_lha.c to cause an out-of-bounds read that can crash the application.
lha_read_file_header_1
archive_read_support_format_lha.c
bugzilla.suse.com/show_bug.cgi?id=1022528
github.com/libarchive/libarchive/commit/98dcbbf0bf4854bf987557e55e55fff7abbf3ea9