Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libarchive libarchive vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-5601
An error in the lha_read_file_header_1() function (archive_read_support_format_lha.c) in libarchive 3.2.2 allows remote malicious users to trigger an out-of-bounds read memory access and subsequently cause a crash via a specially crafted archive.
Libarchive Libarchive 3.2.2
828
VMScore
CVE-2016-4736
libarchive in Apple OS X prior to 10.12 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted file.
Apple Mac Os X
445
VMScore
CVE-2016-4809
The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive prior to 3.2.1 allows remote malicious users to cause a denial of service (application crash) via a CPIO archive with a large symlink.
Redhat Enterprise Linux Hpc Node 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Hpc Node Eus 7.2
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Hpc Node 7.0
Redhat Enterprise Linux Server Aus 7.2
Oracle Linux 6
Oracle Linux 7
Libarchive Libarchive
383
VMScore
CVE-2015-8915
bsdcpio in libarchive prior to 3.2.0 allows remote malicious users to cause a denial of service (invalid read and crash) via crafted cpio file.
Libarchive Libarchive
783
VMScore
CVE-2015-6984
libarchive in Apple OS X prior to 10.11.1 allows malicious users to write to arbitrary files via a crafted app that conducts an unspecified symlink attack.
Apple Mac Os X
570
VMScore
CVE-2015-2304
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and previous versions allows remote malicious users to write to arbitrary files via a full pathname in an archive.
Libarchive Libarchive
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
445
VMScore
CVE-2013-0211
Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and previous versions, when running on 64-bit machines, allows context-dependent malicious users to cause a denial of service (crash) via unspecified vectors, whi...
Libarchive Libarchive
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 13.1
Canonical Ubuntu Linux 14.10
Opensuse Opensuse 13.2
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Freebsd Freebsd 9.3
445
VMScore
CVE-2013-4668
Directory traversal vulnerability in File Roller 3.6.x prior to 3.6.4, 3.8.x prior to 3.8.3, and 3.9.x prior to 3.9.3, when libarchive is used, allows remote malicious users to create arbitrary files via a crafted archive that is not properly handled in a "Keep directory str...
File Roller Project File Roller
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.04
605
VMScore
CVE-2011-1777
Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive up to and including 2.8.5 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via...
Freebsd Libarchive 2.8.3
Freebsd Libarchive 2.8.2
Freebsd Libarchive 2.6
Freebsd Libarchive 2.5
Freebsd Libarchive 2.4
Freebsd Libarchive 2.7.1
Freebsd Libarchive 2.7.0
Freebsd Libarchive 2.1
Freebsd Libarchive 2.0
Freebsd Libarchive 2.8.4
Freebsd Libarchive 2.6.2
Freebsd Libarchive 2.6.1
Freebsd Libarchive
Freebsd Libarchive 2.2.3
Freebsd Libarchive 2.8.1
Freebsd Libarchive 2.8.0
Freebsd Libarchive 2.3
Freebsd Libarchive 2.2
605
VMScore
CVE-2011-1778
Buffer overflow in libarchive up to and including 2.8.5 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TAR archive.
Freebsd Libarchive 2.8.4
Freebsd Libarchive 2.6.2
Freebsd Libarchive 2.6.1
Freebsd Libarchive
Freebsd Libarchive 2.2.3
Freebsd Libarchive 2.8.1
Freebsd Libarchive 2.8.0
Freebsd Libarchive 2.4
Freebsd Libarchive 2.3
Freebsd Libarchive 2.7.1
Freebsd Libarchive 2.7.0
Freebsd Libarchive 2.2
Freebsd Libarchive 2.1
Freebsd Libarchive 2.0
Freebsd Libarchive 2.8.3
Freebsd Libarchive 2.8.2
Freebsd Libarchive 2.6
Freebsd Libarchive 2.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »