Lucene search
F5F5:K24036027HistoryDec 07, 2016 - 12:00 a.m.
K24036027 : libarchive vulnerability CVE-2016-5844
2016-12-0700:00:00
my.f5.com
17
Security Advisory Description
Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file. (CVE-2016-5844)
Impact
For BIG-IP and VIPRION platforms that are configured to use Virtual Clustered Multiprocessing (vCMP), an authenticated administrator can upload a specially crafted ISO file and use the ISO file to create a vCMP guest virtual machine. A successful attack may cause the bsdtar to stop responding while creating the vCMP guest virtual machine.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
openvas
openvas
F5 BIG-IP - libarchive vulnerability CVE-2016-5844
2016-12-14 00:00:00
Mageia: Security Advisory (MGASA-2016-0239)
2022-01-28 00:00:00
CentOS Update for libarchive CESA-2016:1850 centos6
2016-09-16 00:00:00
alpinelinux
alpinelinux
CVE-2016-5844
2016-09-21 14:25:16
debiancve
debiancve
CVE-2016-5844
2016-09-21 14:25:16
nessus
nessus
F5 Networks BIG-IP : libarchive vulnerability (K24036027)
2016-12-12 00:00:00
openSUSE Security Update : libarchive (openSUSE-2016-1404)
2016-12-06 00:00:00
CentOS 6 : libarchive (CESA-2016:1850)
2016-09-16 00:00:00
cve
cve
CVE-2016-5844
2016-09-21 14:25:16
prion
prion
Integer overflow
2016-09-21 14:25:00
nvd
nvd
CVE-2016-5844
2016-09-21 14:25:16
ubuntucve
ubuntucve
CVE-2016-5844
2016-06-24 00:00:00
cvelist
cvelist
CVE-2016-5844
2016-09-21 14:00:00
redhatcve
redhatcve
CVE-2016-5844
2016-06-28 07:50:40
veracode
veracode
Denial Of Service (DoS) Through Integer Overflow
2018-04-18 08:18:53
mageia
mageia
Updated libarchive packages fix security vulnerability
2016-07-05 18:47:08
oraclelinux
oraclelinux
libarchive security update
2016-09-12 00:00:00
libarchive security update
2016-09-12 00:00:00
redhat
redhat
(RHSA-2016:1850) Important: libarchive security update
2016-09-12 15:10:17
(RHSA-2016:1844) Important: libarchive security update
2016-09-12 15:10:21
centos
centos
libarchive security update
2016-09-15 22:26:12
bsdcpio, bsdtar, libarchive security update
2016-09-16 00:18:58
debian
debian
[SECURITY] [DLA 554-1] libarchive security update
2016-07-21 06:10:45
[SECURITY] [DSA 3657-1] libarchive security update
2016-08-30 21:15:15
cloudfoundry
cloudfoundry
USN-3033-1 libarchive vulnerability | Cloud Foundry
2016-08-25 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2016-07-14 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in libarchive affect PowerKVM
2018-06-18 01:33:29
amazon
amazon
Important: libarchive
2016-09-27 10:30:00
gentoo
gentoo
libarchive: Multiple vulnerabilities
2017-01-01 00:00:00