CVE-2015-8921

Опубликовано: 20 сент. 2016

Источник: debian

EPSS Низкий

Описание

The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libarchive	fixed	3.2.0-2		package

Примечания

https://github.com/libarchive/libarchive/issues/512
Fixed by https://github.com/libarchive/libarchive/commit/1cbc76f
Fixed by https://github.com/libarchive/libarchive/commit/05a875fdb876e7a2f56a2937f756927cbed919e0

EPSS

Процентиль: 87%

0.0366

Низкий

Связанные уязвимости

CVE-2015-8921

CVSS3: 7.5

ubuntu

почти 9 лет назад

The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

CVE-2015-8921

CVSS3: 3.7

redhat

около 9 лет назад

The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

CVE-2015-8921

CVSS3: 7.5

nvd

почти 9 лет назад

The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

GHSA-qh85-jxmr-j5xp

CVSS3: 7.5

github

около 3 лет назад

The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

SUSE-SU-2016:1939-1

suse-cvrf

около 9 лет назад

Security update for bsdtar

EPSS

Процентиль: 87%

0.0366

Низкий