Описание
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.
Отчет
The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive's RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | libarchive | Out of support scope | ||
| Red Hat Enterprise Linux 10 | libarchive | Fixed | RHSA-2025:14137 | 20.08.2025 |
| Red Hat Enterprise Linux 7 Extended Lifecycle Support | libarchive | Fixed | RHSA-2025:14828 | 28.08.2025 |
| Red Hat Enterprise Linux 8 | libarchive | Fixed | RHSA-2025:14135 | 20.08.2025 |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | libarchive | Fixed | RHSA-2025:14528 | 25.08.2025 |
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | libarchive | Fixed | RHSA-2025:14810 | 28.08.2025 |
| Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On | libarchive | Fixed | RHSA-2025:14810 | 28.08.2025 |
| Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | libarchive | Fixed | RHSA-2025:14808 | 28.08.2025 |
| Red Hat Enterprise Linux 8.6 Telecommunications Update Service | libarchive | Fixed | RHSA-2025:14808 | 28.08.2025 |
| Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions | libarchive | Fixed | RHSA-2025:14808 | 28.08.2025 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.8 High
CVSS3
Связанные уязвимости
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.
Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c
A vulnerability has been identified in the libarchive library, specifi ...
EPSS
7.8 High
CVSS3