Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive up to and including 2.8.5 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ISO9660 image.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freebsd libarchive 2.8.3 |
||
freebsd libarchive 2.8.2 |
||
freebsd libarchive 2.6 |
||
freebsd libarchive 2.5 |
||
freebsd libarchive 2.4 |
||
freebsd libarchive 2.7.1 |
||
freebsd libarchive 2.7.0 |
||
freebsd libarchive 2.1 |
||
freebsd libarchive 2.0 |
||
freebsd libarchive 2.8.4 |
||
freebsd libarchive 2.6.2 |
||
freebsd libarchive 2.6.1 |
||
freebsd libarchive |
||
freebsd libarchive 2.2.3 |
||
freebsd libarchive 2.8.1 |
||
freebsd libarchive 2.8.0 |
||
freebsd libarchive 2.3 |
||
freebsd libarchive 2.2 |