PT-2015-7845 · Libarchive+5 · Libarchive+5

Hanno Böck

Published

2015-12-31

Updated

2024-06-15

CVE-2015-8934

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libarchive versions 3.2.0 and earlier

Description The issue allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted rar file.

Recommendations For libarchive versions 3.2.0 and earlier, update to a version later than 3.2.0 to resolve the issue.

Exploit

Fix

DoS

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

ALT-PU-2016-1654

CESA-2016_1844

CVE-2015-8934

DLA-554-1

DSA-3657-1

MGASA-2016-0239

OPENSUSE-SU-2016_2036-1

OPENSUSE-SU-2024:10127-1

RHSA-2016:1844

RHSA-2016_1844

SUSE-SU-2016:1909-1

USN-3033-1

Alt Linux

Centos

Red Hat

Suse

Ubuntu

Libarchive