CVE-2019-19221

Опубликовано: 21 нояб. 2019

Источник: ubuntu

Приоритет: low

CVSS2: 2.1

CVSS3: 5.5

Описание

In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.

Релиз	Статус	Примечание
bionic	released	3.2.2-3.1ubuntu0.6
devel	released	3.4.0-1ubuntu2
disco	ignored	end of life
eoan	released	3.4.0-1ubuntu0.1
esm-infra-legacy/trusty	needed
esm-infra/bionic	released	3.2.2-3.1ubuntu0.6
esm-infra/focal	released	3.4.0-1ubuntu2
esm-infra/xenial	released	3.1.2-11ubuntu0.16.04.8
focal	released	3.4.0-1ubuntu2
groovy	released	3.4.0-1ubuntu2

Показывать по

Ссылки на источники

2.1 Low

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2019-19221

CVSS3: 6.5

redhat

около 6 лет назад

In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.

CVE-2019-19221

CVSS3: 5.5

nvd

около 6 лет назад

In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.

CVE-2019-19221

CVSS3: 5.5

debian

около 6 лет назад

In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string ...

SUSE-SU-2021:3722-1

suse-cvrf

около 4 лет назад

Security update for libarchive

GHSA-m55v-6hqc-x3jh

CVSS3: 5.5

github

больше 3 лет назад

In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.

2.1 Low

CVSS2

5.5 Medium

CVSS3

CVE-2019-19221

Описание

Пакет libarchive

Ссылки на источники

Связанные уязвимости