CVE-2015-8928

Опубликовано: 20 сент. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

Релиз	Статус	Примечание
devel	not-affected	3.2.1-1
esm-infra-legacy/trusty	not-affected	3.1.2-7ubuntu2.3
esm-infra/xenial	not-affected	3.1.2-11ubuntu0.16.04.2
precise	not-affected	code not present
trusty	released	3.1.2-7ubuntu2.3
trusty/esm	not-affected	3.1.2-7ubuntu2.3
upstream	released	3.2.0-2
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	released	3.1.2-11ubuntu0.15.10.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 52%

0.00295

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2015-8928

CVSS3: 3.7

redhat

около 9 лет назад

The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

CVE-2015-8928

CVSS3: 5.5

nvd

почти 9 лет назад

The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

CVE-2015-8928

CVSS3: 5.5

debian

почти 9 лет назад

The process_add_entry function in archive_read_support_format_mtree.c ...

GHSA-3cfr-mv5q-x2vc

CVSS3: 5.5

github

около 3 лет назад

The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

openSUSE-SU-2016:2036-1

suse-cvrf

почти 9 лет назад

Security update for libarchive

EPSS

Процентиль: 52%

0.00295

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2015-8928

Описание

Пакет libarchive

Ссылки на источники

Связанные уязвимости