The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and previous versions allows remote malicious users to cause a denial of service (out-of-bounds heap read) via a crafted rar file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
suse linux enterprise server 12 |
||
suse linux enterprise software development kit 12 |
||
suse linux enterprise desktop 12 |
||
canonical ubuntu linux 15.10 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 12.04 |
||
libarchive libarchive |