Lucene search
China National Vulnerability DatabaseCNVD-2022-86314HistoryNov 24, 2022 - 12:00 a.m.
libarchive Code Execution Vulnerability
2022-11-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
16
libarchive multi-format library compression version 3.6.1 code execution vulnerability unchecked error calloc function null pointer dereferenced attacker exploit
0.004 Low
EPSS
Percentile
74.3%
libarchive is a multi-format archive and compression library. libarchive libarchive version 3.6.1 contains a code execution vulnerability that stems from an unchecked error after a call to the calloc function, meaning that if the function fails, the calloc function returns a NULL pointer, which causes the NULL pointer to be dereferenced. An attacker could exploit this vulnerability to execute arbitrary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libarchive libarchive | eq | 3.6.1 |
Related
nessus
nessus
EulerOS 2.0 SP11 : libarchive (EulerOS-SA-2023-1411)
2023-03-07 00:00:00
EulerOS 2.0 SP9 : libarchive (EulerOS-SA-2023-1471)
2023-03-08 00:00:00
EulerOS Virtualization 3.0.6.6 : libarchive (EulerOS-SA-2023-2427)
2023-07-26 00:00:00
amazon
amazon
Low: libarchive
2023-11-29 22:20:00
Low: libarchive
2023-09-27 22:49:00
openvas
openvas
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2023-1389)
2023-02-10 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2023-2097)
2023-06-07 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2023-2045)
2023-06-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-36227 affecting package libarchive for versions less than 3.6.1-2
2022-12-09 00:19:53
CVE-2022-36227 affecting package libarchive 3.6.1-1
2022-12-06 23:44:35
alpinelinux
alpinelinux
CVE-2022-36227
2022-11-22 02:15:11
redhat
redhat
(RHSA-2023:3018) Low: libarchive security update
2023-05-16 06:00:56
(RHSA-2024:0146) Low: libarchive security update
2024-01-10 12:32:17
(RHSA-2023:2532) Low: libarchive security update
2023-05-09 05:13:22
redos
redos
ROS-20221216-01
2022-12-16 00:00:00
oraclelinux
oraclelinux
libarchive security update
2023-05-24 00:00:00
libarchive security update
2023-05-15 00:00:00
redhatcve
redhatcve
CVE-2022-36227
2022-11-22 20:26:02
prion
prion
Null pointer dereference
2022-11-22 02:15:00
cnvd
cnvd
A binary vulnerability exists in libarchive (CNVD-2022-90746)
2022-11-29 00:00:00
almalinux
almalinux
Low: libarchive security update
2023-05-09 00:00:00
Low: libarchive security update
2023-05-16 00:00:00
debian
debian
[SECURITY] [DLA 3294-1] libarchive security update
2023-01-30 18:42:27
fedora
fedora
[SECURITY] Fedora 37 Update: libarchive-3.6.1-3.fc37
2022-12-19 01:16:09
veracode
veracode
NULL Pointer Dereference
2022-11-30 04:04:28
ubuntucve
ubuntucve
CVE-2022-36227
2022-11-22 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package libarchive version 3.6.1-alt2
2022-12-12 00:00:00
cve
cve
CVE-2022-36227
2022-11-22 02:15:11
osv
osv
Low: libarchive security update
2023-05-16 00:00:00
libarchive - security update
2023-01-30 00:00:00
Low: libarchive security update
2023-05-09 00:00:00
ibm
ibm
debiancve
debiancve
CVE-2022-36227
2022-11-22 02:15:11
wolfi
wolfi
CVE-2022-36227 vulnerabilities
2024-06-26 15:33:03
gentoo
gentoo
libarchive: Multiple Vulnerabilities
2023-09-29 00:00:00
mageia
mageia
Updated libarchive packages fix security vulnerability
2022-12-14 01:09:19
nvd
nvd
CVE-2022-36227
2022-11-22 02:15:11
cvelist
cvelist
CVE-2022-36227
2022-11-22 00:00:00
cgr
cgr
CVE-2022-36227 vulnerabilities
2024-05-19 03:07:16
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0333
2023-02-14 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0532
2023-02-11 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0078
2023-08-24 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2205
2023-08-01 13:07:57
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00