Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7876
HistoryNov 23, 2018 - 5:52 a.m.

Heap-based Buffer Over-read

2018-11-2305:52:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12

0.01 Low

EPSS

Percentile

83.7%

libarchive.so is vulnerable to heap-based buffer over-read. The vulnerability can be triggered when an attacker input a malicious file to the archive_read_format_cab_read_header function in archive_read_support_format_cab.c.

CPENameOperatorVersion
libarchive.soeq13.1.2