CVE-2016-4301

Опубликовано: 21 сент. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 7.8

Описание

Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a crafted mtree file.

Релиз	Статус	Примечание
devel	not-affected	3.2.1-1
esm-infra-legacy/trusty	not-affected
esm-infra/xenial	not-affected	3.1.2-11ubuntu0.16.04.1
precise	not-affected
trusty	not-affected
trusty/esm	not-affected
upstream	needed
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 80%

0.0143

Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2016-4301

CVSS3: 7.7

redhat

больше 9 лет назад

Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a crafted mtree file.

CVE-2016-4301

CVSS3: 7.8

nvd

больше 9 лет назад

Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a crafted mtree file.

CVE-2016-4301

CVSS3: 7.8

debian

больше 9 лет назад

Stack-based buffer overflow in the parse_device function in archive_re ...

GHSA-r3m8-9hr7-7xwr

CVSS3: 7.8

github

больше 3 лет назад

Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a crafted mtree file.

openSUSE-SU-2016:2036-1

suse-cvrf

больше 9 лет назад

Security update for libarchive

EPSS

Процентиль: 80%

0.0143

Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

CVE-2016-4301

Описание

Пакет libarchive

Ссылки на источники

Связанные уязвимости