The trad_enc_decrypt_update function in archive_read_support_format_zip.c in libarchive prior to 3.2.0 allows remote malicious users to cause a denial of service (out-of-bounds heap read and crash) via a crafted zip file, related to reading the password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libarchive libarchive |