CVE-2015-8920

Опубликовано: 20 сент. 2016

Источник: debian

EPSS Низкий

Описание

The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libarchive	fixed	3.2.0-2		package

Примечания

https://github.com/libarchive/libarchive/issues/511
Fixed by https://github.com/libarchive/libarchive/commit/97f964e

EPSS

Процентиль: 65%

0.00483

Низкий

Связанные уязвимости

CVE-2015-8920

CVSS3: 5.5

ubuntu

около 9 лет назад

The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.

CVE-2015-8920

CVSS3: 3.7

redhat

больше 9 лет назад

The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.

CVE-2015-8920

CVSS3: 5.5

nvd

около 9 лет назад

The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.

GHSA-f3p9-58ff-r365

CVSS3: 5.5

github

больше 3 лет назад

The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.

SUSE-SU-2016:1939-1

suse-cvrf

больше 9 лет назад

Security update for bsdtar

EPSS

Процентиль: 65%

0.00483

Низкий