rpm package
suse/libarchive&distro=SUSE Linux Enterprise Desktop 12 SP1
pkg:rpm/suse/libarchive&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1
Vulnerabilities (28)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8923 | Med | 6.5 | < 3.1.2-22.1 | 3.1.2-22.1 | Sep 20, 2016 | The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of service (crash) via a crafted zip file. | |
| CVE-2015-8922 | Med | 5.5 | < 3.1.2-22.1 | 3.1.2-22.1 | Sep 20, 2016 | The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7z file, related to the _7z_folder struct. | |
| CVE-2015-8921 | Hig | 7.5 | < 3.1.2-22.1 | 3.1.2-22.1 | Sep 20, 2016 | The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. | |
| CVE-2015-8920 | Med | 5.5 | < 3.1.2-22.1 | 3.1.2-22.1 | Sep 20, 2016 | The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file. | |
| CVE-2015-8919 | Hig | 7.5 | < 3.1.2-22.1 | 3.1.2-22.1 | Sep 20, 2016 | The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) lzh or (2) lha file. | |
| CVE-2015-8918 | Hig | 7.5 | < 3.1.2-22.1 | 3.1.2-22.1 | Sep 20, 2016 | The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy." | |
| CVE-2016-1541 | Hig | 8.8 | < 3.1.2-12.1 | 3.1.2-12.1 | May 7, 2016 | Heap-based buffer overflow in the zip_read_mac_metadata function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to execute arbitrary code via crafted entry-size values in a ZIP archive. | |
| CVE-2015-2304 | — | < 3.1.2-25.1 | 3.1.2-25.1 | Mar 15, 2015 | Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive. |
- affected < 3.1.2-22.1fixed 3.1.2-22.1
The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of service (crash) via a crafted zip file.
- affected < 3.1.2-22.1fixed 3.1.2-22.1
The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7z file, related to the _7z_folder struct.
- affected < 3.1.2-22.1fixed 3.1.2-22.1
The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.
- affected < 3.1.2-22.1fixed 3.1.2-22.1
The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.
- affected < 3.1.2-22.1fixed 3.1.2-22.1
The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) lzh or (2) lha file.
- affected < 3.1.2-22.1fixed 3.1.2-22.1
The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy."
- affected < 3.1.2-12.1fixed 3.1.2-12.1
Heap-based buffer overflow in the zip_read_mac_metadata function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to execute arbitrary code via crafted entry-size values in a ZIP archive.
- CVE-2015-2304Mar 15, 2015affected < 3.1.2-25.1fixed 3.1.2-25.1
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive.
Page 2 of 2