Unrated severityNVD Advisory· Published Oct 10, 2024· Updated Aug 29, 2025
CVE-2024-48957
CVE-2024-48957
Description
execute_filter_audio in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7(expand)+ 1 more
- (no CPE)
- (no CPE)range: < 3.7.5
- osv-coords5 versionspkg:rpm/opensuse/libarchive&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/libarchive&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/libarchive&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6pkg:rpm/suse/libarchive&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/libarchive&distro=SUSE%20Linux%20Micro%206.1
< 3.7.2-150600.3.6.1+ 4 more
- (no CPE)range: < 3.7.2-150600.3.6.1
- (no CPE)range: < 3.7.2-150600.3.6.1
- (no CPE)range: < 3.7.2-150600.3.6.1
- (no CPE)range: < 3.6.2-4.1
- (no CPE)range: < 3.7.4-slfo.1.1_2.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.