9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.005 Low
EPSS
Percentile
76.2%
In libarchive before 3.6.2, the software does not check for an error after
calling calloc function that can return with a NULL pointer if the function
fails, which leads to a resultant NULL pointer dereference. NOTE: the
discoverer cites this CWE-476 remark but third parties dispute the
code-execution impact: “In rare circumstances, when NULL is equivalent to
the 0x0 memory address and privileged code can access it, then writing or
reading memory is possible, which may lead to code execution.”
Author | Note |
---|---|
mdeslaur | most likely a denial of service only |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | libarchive | < any | UNKNOWN |
ubuntu | 20.04 | noarch | libarchive | < any | UNKNOWN |
ubuntu | 22.04 | noarch | libarchive | < any | UNKNOWN |
ubuntu | 14.04 | noarch | libarchive | < any | UNKNOWN |
ubuntu | 16.04 | noarch | libarchive | < any | UNKNOWN |