Unrated severityOSV Advisory· Published Apr 23, 2019· Updated Aug 4, 2024
CVE-2019-11463
CVE-2019-11463
Description
A memory leak in archive_read_format_zip_cleanup in archive_read_support_format_zip.c in libarchive 3.3.4-dev allows remote attackers to cause a denial of service via a crafted ZIP file because of a HAVE_LZMA_H typo. NOTE: this only affects users who downloaded the development code from GitHub. Users of the product's official releases are unaffected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2v3.0.0a, v3.0.1b, v3.1.900a, …+ 1 more
- (no CPE)range: v3.0.0a, v3.0.1b, v3.1.900a, …
- (no CPE)range: = 3.3.4-dev (development)
Patches
Vulnerability mechanics
References
2- github.com/libarchive/libarchive/commit/ba641f73f3d758d9032b3f0e5597a9c6e593a505mitrex_refsource_MISC
- github.com/libarchive/libarchive/issues/1165mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.