Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libarchive vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-15873
The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an Integer Overflow that may lead to a write access violation.
Busybox Busybox 1.27.2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
2.1
CVSSv2
CVE-2016-7619
An issue exists in certain Apple products. iOS prior to 10.2 is affected. macOS prior to 10.12.2 is affected. watchOS prior to 3.1.3 is affected. The issue involves the "libarchive" component, which allows local users to write to arbitrary files via vectors related to s...
Apple Iphone Os
Apple Mac Os X
Apple Watchos
6.8
CVSSv2
CVE-2017-13813
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "libarchive" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted ar...
Apple Mac Os X
6.8
CVSSv2
CVE-2017-13812
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "libarchive" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted ...
Apple Mac Os X
6.8
CVSSv2
CVE-2017-13816
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "libarchive" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted ar...
Apple Mac Os X
2.1
CVSSv2
CVE-2017-2390
An issue exists in certain Apple products. iOS prior to 10.3 is affected. macOS prior to 10.12.4 is affected. tvOS prior to 10.2 is affected. watchOS prior to 3.2 is affected. The issue involves symlink mishandling in the "libarchive" component. It allows local users to...
Apple Iphone Os
Apple Watchos
Apple Mac Os X
Apple Tvos
4.3
CVSSv2
CVE-2016-4679
An issue exists in certain Apple products. iOS prior to 10.1 is affected. macOS prior to 10.12.1 is affected. tvOS prior to 10.0.1 is affected. watchOS prior to 3.1 is affected. The issue involves the "libarchive" component, which allows remote malicious users to write ...
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
5
CVSSv2
CVE-2013-4668
Directory traversal vulnerability in File Roller 3.6.x prior to 3.6.4, 3.8.x prior to 3.8.3, and 3.9.x prior to 3.9.3, when libarchive is used, allows remote malicious users to create arbitrary files via a crafted archive that is not properly handled in a "Keep directory str...
File Roller Project File Roller
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.04
6.8
CVSSv2
CVE-2017-7068
An issue exists in certain Apple products. iOS prior to 10.3.3 is affected. macOS prior to 10.12.6 is affected. tvOS prior to 10.2.2 is affected. watchOS prior to 3.2.3 is affected. The issue involves the "libarchive" component. It allows remote malicious users to execu...
Apple Mac Os X
Apple Tvos
Apple Watchos
Apple Iphone Os
4.3
CVSSv2
CVE-2015-9261
huft_build in archival/libarchive/decompress_gunzip.c in BusyBox prior to 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file.
Busybox Busybox
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6