Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-60753

Опубликовано: 05 нояб. 2025
Источник: debian
EPSS Низкий

Описание

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libarchivefixed3.8.4-1package

Примечания

  • https://github.com/libarchive/libarchive/issues/2725

  • https://github.com/libarchive/libarchive/pull/2787

  • Fixed by: https://github.com/libarchive/libarchive/commit/81bc00a549e4e0c85ab15136315ef32d70412dc7

  • Fixed by: https://github.com/libarchive/libarchive/commit/df9967323ee89c07e59c82999dcbbdc6a54a3282 (v3.8.4)

  • Negligible security impact

EPSS

Процентиль: 24%
0.00082
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-60753

CVSS3: 5.5
ubuntu
5 месяцев назад

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

redhat логотип

CVE-2025-60753

CVSS3: 5.5
redhat
5 месяцев назад

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

nvd логотип

CVE-2025-60753

CVSS3: 5.5
nvd
5 месяцев назад

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

msrc логотип

CVE-2025-60753

CVSS3: 5.5
msrc
около 1 месяца назад

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

github логотип

GHSA-qm3h-46xc-w7w4

CVSS3: 5.5
github
5 месяцев назад

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

EPSS

Процентиль: 24%
0.00082
Низкий