Lucene search
MitreCVELIST:CVE-2015-8923HistorySep 20, 2016 - 2:00 p.m.
CVE-2015-8923
2016-09-2014:00:00
mitre
www.cve.org
The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of service (crash) via a crafted zip file.
References
lists.opensuse.org/opensuse-security-announce/2016-07/msg00025.html
rhn.redhat.com/errata/RHSA-2016-1844.html
www.debian.org/security/2016/dsa-3657
www.openwall.com/lists/oss-security/2016/06/17/2
www.openwall.com/lists/oss-security/2016/06/17/5
www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
www.securityfocus.com/bid/91309
www.ubuntu.com/usn/USN-3033-1
blog.fuzzing-project.org/47-Many-invalid-memory-access-issues-in-libarchive.html
github.com/libarchive/libarchive/issues/514
security.gentoo.org/glsa/201701-03
Related
veracode
veracode
Denial Of Service (DoS)
2018-07-31 14:05:47
debiancve
debiancve
CVE-2015-8923
2016-09-20 14:15:09
ubuntucve
ubuntucve
CVE-2015-8923
2015-12-31 00:00:00
nvd
nvd
CVE-2015-8923
2016-09-20 14:15:09
cve
cve
CVE-2015-8923
2016-09-20 14:15:09
prion
prion
Design/Logic Flaw
2016-09-20 14:15:00
redhatcve
redhatcve
CVE-2015-8923
2016-06-22 06:18:46
ibm
ibm
Security Bulletin: Vulnerabilities in libarchive affect PowerKVM
2018-06-18 01:33:29
debian
debian
[SECURITY] [DLA 554-1] libarchive security update
2016-07-21 06:10:45
[SECURITY] [DSA 3657-1] libarchive security update
2016-08-30 21:15:15
nessus
nessus
Debian DLA-554-1 : libarchive security update
2016-07-22 00:00:00
SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2016:1909-1)
2016-08-29 00:00:00
Debian DSA-3657-1 : libarchive - security update
2016-08-31 00:00:00
suse
suse
Security update for libarchive (important)
2016-08-11 17:13:38
Security update for libarchive (important)
2016-07-29 14:09:01
openvas
openvas
openSUSE: Security Advisory for libarchive (openSUSE-SU-2016:2036-1)
2016-08-12 00:00:00
Debian: Security Advisory (DLA-554-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3657-1)
2016-09-07 00:00:00
cloudfoundry
cloudfoundry
USN-3033-1 libarchive vulnerability | Cloud Foundry
2016-08-25 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2016-07-14 00:00:00
oraclelinux
oraclelinux
libarchive security update
2016-09-12 00:00:00
amazon
amazon
Important: libarchive
2016-09-27 10:30:00
centos
centos
bsdcpio, bsdtar, libarchive security update
2016-09-16 00:18:58
redhat
redhat
(RHSA-2016:1844) Important: libarchive security update
2016-09-12 15:10:21
gentoo
gentoo
libarchive: Multiple vulnerabilities
2017-01-01 00:00:00