Unrated severityNVD Advisory· Published Oct 15, 2020· Updated Aug 4, 2024
CVE-2020-21674
CVE-2020-21674
Description
Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string.c) in libarchive-3.4.1dev allows remote attackers to cause a denial of service (out-of-bounds write in heap memory resulting into a crash) via a crafted archive file. NOTE: this only affects users who downloaded the development code from GitHub. Users of the product's official releases are unaffected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- libarchive/libarchivedescription
- Range: =3.4.1dev
Patches
Vulnerability mechanics
References
2- github.com/libarchive/libarchive/commit/4f085eea879e2be745f4d9bf57e8513ae48157f4mitrex_refsource_MISC
- github.com/libarchive/libarchive/issues/1298mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.