CVSS: 7.5EPSS: 2%CPEs: 14EXPL: 0CVE-2016-4809 – libarchive: Memory allocate error with symbolic links in cpio archives
https://notcve.org/view.php?id=CVE-2016-4809
14 Jul 2016 — The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a CPIO archive with a large symlink. La función archive_read_format_cpio_read_header en archive_read_support_format_cpio.c en libarchive en versiones anteriores a 3.2.1 permite a atacantes remotos provocar denegación de servicio (caída de aplicación) a través de un archivo CPIO con un enlace simbólico grande. A vulnera... • http://rhn.redhat.com/errata/RHSA-2016-1844.html • CWE-20: Improper Input Validation CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 8.8EPSS: 11%CPEs: 1EXPL: 0CVE-2016-1541 – libarchive: zip_read_mac_metadata() heap-based buffer overflow
https://notcve.org/view.php?id=CVE-2016-1541
07 May 2016 — Heap-based buffer overflow in the zip_read_mac_metadata function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to execute arbitrary code via crafted entry-size values in a ZIP archive. Desbordamiento de buffer basado en memoria dinámica en la función zip_read_mac_metadata en archive_read_support_format_zip.c en libarchive en versiones anteriores a 3.2.0 permite a atacantes remotos ejecutar código arbitrario a través de valores entry-size manipulados en un archivo ZI... • http://lists.opensuse.org/opensuse-updates/2016-06/msg00003.html • CWE-20: Improper Input Validation CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 3%CPEs: 6EXPL: 1CVE-2015-2304 – Gentoo Linux Security Advisory 201701-03
https://notcve.org/view.php?id=CVE-2015-2304
15 Mar 2015 — Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive. Vulnerabilidad de recorrido de directorio absoluto en bsdcpio en libarchive 3.1.2 y anteriores permite a atacantes remotos escribir archivos arbitrarios a través de un nombre completo de ruta en un archivo. It was discovered that the libarchive bsdcpio utility extracted absolute paths by default without using the --insecure flag, contrary to ... • http://advisories.mageia.org/MGASA-2015-0106.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 1%CPEs: 9EXPL: 0CVE-2013-0211 – Gentoo Linux Security Advisory 201406-02
https://notcve.org/view.php?id=CVE-2013-0211
30 Sep 2013 — Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers to cause a denial of service (crash) via unspecified vectors, which triggers an improper conversion between unsigned and signed types, leading to a buffer overflow. Error de signo de enteros en la función archive_write_zip_data de archive_write_set_format_zip.c en la versión 3.1.2 y anteriores, cuando se ejecuta... • http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101687.html • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2011-1779 – Gentoo Linux Security Advisory 201406-02
https://notcve.org/view.php?id=CVE-2011-1779
13 Apr 2012 — Multiple use-after-free vulnerabilities in libarchive 2.8.4 and 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted (1) TAR archive or (2) ISO9660 image. Múltiples vulnerabilidades de uso despues de la liberación en libarchive v2.8.4 y v2.8.5, permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) o posiblemente tener otros impactos no especificados a través de un (1) archivo TAR o (2) imagen ... • http://code.google.com/p/libarchive/source/detail?r=3038 • CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4666 – Gentoo Linux Security Advisory 201406-02
https://notcve.org/view.php?id=CVE-2010-4666
13 Apr 2012 — Buffer overflow in libarchive 3.0 pre-release code allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CAB file, which is not properly handled during the reading of Huffman code data within LZX compressed data. Desbordamiento de búfer en el código libarchive v3.0 pre-release, permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente terner otro impacto a través de un fichero CAB manipulado... • http://code.google.com/p/libarchive/source/detail?r=2842 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 2%CPEs: 18EXPL: 0CVE-2011-1777 – Libarchive multiple security issues
https://notcve.org/view.php?id=CVE-2011-1777
13 Apr 2012 — Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ISO9660 image. Múltiples desbordamientos de búfer en las funciones (1) heap_add_entry y (2) relocate_dir en archive_read_support_format_iso9660.c en libarchive hasta v2.8.5, permite a atacantes remotos provocar una denegación de servicio (... • http://code.google.com/p/libarchive/source/detail?r=3158 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 18EXPL: 0CVE-2011-1778 – Libarchive multiple security issues
https://notcve.org/view.php?id=CVE-2011-1778
13 Apr 2012 — Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TAR archive. Desbordamiento de búfer en libarchive hasta v2.8.5, permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente la ejecución de código a través de un fichero TAR manipulado. Multiple vulnerabilities have been found in libarchive, some of which may allow execution of arbitrary code. Versions ... • http://code.google.com/p/libarchive/source/detail?r=3160 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 2%CPEs: 1EXPL: 0CVE-2007-3645
https://notcve.org/view.php?id=CVE-2007-3645
15 Jul 2007 — archive_read_support_format_tar.c in libarchive before 2.2.4 allows user-assisted remote attackers to cause a denial of service (crash) via (1) an end-of-file condition within a tar header that follows a pax extension header or (2) a malformed pax extension header in an (a) PAX or a (b) TAR archive, which results in a NULL pointer dereference, a different issue than CVE-2007-3644. archive_read_support_format_tar.c en libarchive anterior a 2.2.4 permite a atacantes remotos con la complicidad del usuario prov... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=432924 •
CVSS: 9.3EPSS: 4%CPEs: 1EXPL: 0CVE-2007-3641
https://notcve.org/view.php?id=CVE-2007-3641
14 Jul 2007 — archive_read_support_format_tar.c in libarchive before 2.2.4 does not properly compute the length of a certain buffer when processing a malformed pax extension header, which allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) PAX or (2) TAR archive that triggers a buffer overflow. El archive_read_support_format_tar.c en el libarchive anterior al 2.2.4 no calcula adecuadamente la longitud de ciertos búfers cuando está procesando cab... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=432924 •