5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:N/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
0.002 Low
EPSS
Percentile
54.1%
An update is available for libarchive.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libarchive programming library can create and read several different
streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images.
Libarchive is used notably in the bsdtar utility, scripting language bindings
such as python-libarchive, and several popular desktop file managers.
Security Fix(es):
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
rocky | 9 | aarch64 | bsdtar | < 3.5.3-2.el9_0 | bsdtar-0:3.5.3-2.el9_0.aarch64.rpm |
rocky | 9 | ppc64le | bsdtar | < 3.5.3-2.el9_0 | bsdtar-0:3.5.3-2.el9_0.ppc64le.rpm |
rocky | 9 | s390x | bsdtar | < 3.5.3-2.el9_0 | bsdtar-0:3.5.3-2.el9_0.s390x.rpm |
rocky | 9 | x86_64 | bsdtar | < 3.5.3-2.el9_0 | bsdtar-0:3.5.3-2.el9_0.x86_64.rpm |
rocky | 9 | aarch64 | bsdtar-debuginfo | < 3.5.3-2.el9_0 | bsdtar-debuginfo-0:3.5.3-2.el9_0.aarch64.rpm |
rocky | 9 | ppc64le | bsdtar-debuginfo | < 3.5.3-2.el9_0 | bsdtar-debuginfo-0:3.5.3-2.el9_0.ppc64le.rpm |
rocky | 9 | s390x | bsdtar-debuginfo | < 3.5.3-2.el9_0 | bsdtar-debuginfo-0:3.5.3-2.el9_0.s390x.rpm |
rocky | 9 | x86_64 | bsdtar-debuginfo | < 3.5.3-2.el9_0 | bsdtar-debuginfo-0:3.5.3-2.el9_0.x86_64.rpm |
rocky | 9 | aarch64 | libarchive | < 3.5.3-2.el9_0 | libarchive-0:3.5.3-2.el9_0.aarch64.rpm |
rocky | 9 | i686 | libarchive | < 3.5.3-2.el9_0 | libarchive-0:3.5.3-2.el9_0.i686.rpm |
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:N/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
0.002 Low
EPSS
Percentile
54.1%