Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-1632

Опубликовано: 24 фев. 2025
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 1.7
CVSS3: 3.3

Описание

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

РелизСтатусПримечание
devel

released

3.7.7-0ubuntu2.1
esm-infra-legacy/trusty

not-affected

code not present
esm-infra/bionic

not-affected

code not present
esm-infra/focal

not-affected

code not present
esm-infra/xenial

not-affected

code not present
focal

not-affected

code not present
jammy

not-affected

code not present
noble

released

3.7.2-2ubuntu0.4
oracular

released

3.7.4-1ubuntu0.2
plucky

released

3.7.7-0ubuntu2.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 37%
0.00159
Низкий

1.7 Low

CVSS2

3.3 Low

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-1632

CVSS3: 3.3
redhat
8 месяцев назад

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

nvd логотип

CVE-2025-1632

CVSS3: 3.3
nvd
8 месяцев назад

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

msrc логотип

CVE-2025-1632

CVSS3: 3.3
msrc
7 месяцев назад

libarchive bsdunzip.c list null pointer dereference

debian логотип

CVE-2025-1632

CVSS3: 3.3
debian
8 месяцев назад

A vulnerability was found in libarchive up to 3.7.7. It has been class ...

github логотип

GHSA-cw9m-pj72-3cj5

CVSS3: 3.3
github
8 месяцев назад

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

EPSS

Процентиль: 37%
0.00159
Низкий

1.7 Low

CVSS2

3.3 Low

CVSS3