Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-37407

Опубликовано: 08 июн. 2024
Источник: redhat
CVSS3: 8.8

Описание

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

An out-of-bounds access flaw was found in libarchive in the slurp_central_directory function at archive_read_support_format_zip.c. This vulnerability may be triggered if a ZIP archive has an empty name and the mac-ext is enabled.

Отчет

This vulnerability in libarchive is rated with an Important severity because it involves an out-of-bounds access when processing ZIP archives with empty filenames and the mac-ext option enabled. Such vulnerabilities can lead to undefined behavior, including potential exploitation by attackers to execute arbitrary code, causing a denial of service, or exfiltrating sensitive information. The flaw lies in the slurp_central_directory function within archive_read_support_format_zip.c, where improper handling of file names leads to memory access violations.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10libarchiveNot affected
Red Hat Enterprise Linux 6libarchiveNot affected
Red Hat Enterprise Linux 7libarchiveNot affected
Red Hat Enterprise Linux 8libarchiveNot affected
Red Hat Enterprise Linux 9libarchiveNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=2292307libarchive: Out of bounds access in slurp_central_directory at archive_read_support_format_zip.c

8.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-37407

CVSS3: 9.1
ubuntu
больше 1 года назад

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

nvd логотип

CVE-2024-37407

CVSS3: 9.1
nvd
больше 1 года назад

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

msrc логотип

CVE-2024-37407

CVSS3: 9.1
msrc
больше 1 года назад

Описание отсутствует

debian логотип

CVE-2024-37407

CVSS3: 9.1
debian
больше 1 года назад

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP ar ...

github логотип

GHSA-xjwr-37fp-hq82

CVSS3: 9.1
github
больше 1 года назад

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

8.8 High

CVSS3