Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-8687

Опубликовано: 15 фев. 2017
Источник: debian
EPSS Низкий

Описание

Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libarchivefixed3.2.1-5package

Примечания

  • https://blogs.gentoo.org/ago/2016/09/11/libarchive-bsdtar-stack-based-buffer-overflow-in-bsdtar_expand_char-util-c/

  • Fixed by: https://github.com/libarchive/libarchive/commit/e37b620fe8f14535d737e89a4dcabaed4517bf1a

  • https://github.com/libarchive/libarchive/issues/767

EPSS

Процентиль: 80%
0.01379
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2016-8687

CVSS3: 7.5
ubuntu
почти 9 лет назад

Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename.

redhat логотип

CVE-2016-8687

CVSS3: 3.3
redhat
больше 9 лет назад

Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename.

nvd логотип

CVE-2016-8687

CVSS3: 7.5
nvd
почти 9 лет назад

Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename.

github логотип

GHSA-c42q-jv3x-rq38

CVSS3: 7.5
github
больше 3 лет назад

Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a filename.

suse-cvrf логотип

openSUSE-SU-2016:3005-1

suse-cvrf
около 9 лет назад

Security update for libarchive

EPSS

Процентиль: 80%
0.01379
Низкий