Published: 15/02/2017 Updated: 30/11/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

The mtree bidder in libarchive 3.2.1 does not keep track of line sizes when extending the read-ahead, which allows remote malicious users to cause a denial of service (crash) via a crafted file, which triggers an invalid read in the (1) detect_form or (2) bid_entry function in libarchive/archive_read_support_format_mtree.c.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libarchive libarchive 3.2.1
opensuse leap 42.2

libarchive could be made to crash, overwrite files, or run programs as your login if it opened a specially crafted file ...

Debian Bug report logs - #840934 libarchive: CVE-2016-8689: heap-based buffer overflow in read_Header Package: src:libarchive; Maintainer for src:libarchive is Peter Pentchev <roam@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 16 Oct 2016 09:42:02 UTC Severity: grave Tags: patch, secur ...

Debian Bug report logs - #840936 libarchive: CVE-2016-8687: bsdtar: stack-based buffer overflow in bsdtar_expand_char Package: src:libarchive; Maintainer for src:libarchive is Peter Pentchev <roam@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 16 Oct 2016 09:51:04 UTC Severity: grave Ta ...

Debian Bug report logs - #840935 libarchive: CVE-2016-8688: Out of bounds read in mtree parser Package: src:libarchive; Maintainer for src:libarchive is Peter Pentchev <roam@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 16 Oct 2016 09:51:01 UTC Severity: grave Tags: fixed-upstream, pat ...

The mtree bidder in libarchive 321 does not keep track of line sizes when extending the read-ahead, which allows remote attackers to cause a denial of service (crash) via a crafted file, which triggers an invalid read in the (1) detect_form or (2) bid_entry function in libarchive/archive_read_support_format_mtreec ...

CWE-125 https://security.gentoo.org/glsa/201701-03 https://github.com/libarchive/libarchive/commit/eec077f52bfa2d3f7103b4b74d52572ba8a15aca https://bugzilla.redhat.com/show_bug.cgi?id=1377923 https://blogs.gentoo.org/ago/2016/09/11/libarchive-bsdtar-use-after-free-in-detect_form-archive_read_support_format_mtree-c/https://blogs.gentoo.org/ago/2016/09/11/libarchive-bsdtar-use-after-free-in-bid_entry-archive_read_support_format_mtree-c/https://blogs.gentoo.org/ago/2016/09/11/libarchive-bsdtar-memory-corruptionunknown-crash-in-bid_entry-archive_read_support_format_mtree-c/https://blogs.gentoo.org/ago/2016/09/11/libarchive-bsdtar-heap-based-buffer-overflow-in-detect_form-archive_read_support_format_mtree-c/https://blogs.gentoo.org/ago/2016/09/11/libarchive-bsdtar-heap-based-buffer-overflow-in-bid_entry-archive_read_support_format_mtree-c/http://www.securityfocus.com/bid/93781 http://www.openwall.com/lists/oss-security/2016/10/16/11 http://lists.opensuse.org/opensuse-updates/2016-12/msg00027.html https://lists.debian.org/debian-lts-announce/2018/11/msg00037.html https://usn.ubuntu.com/3225-1/https://nvd.nist.gov

CVE-2016-8688

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect