Lucene search
Veracode Vulnerability DatabaseVERACODE:34377HistoryFeb 24, 2022 - 9:48 p.m.
Use After Free
2022-02-2421:48:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
23
libarchive
use after free
lack of sanitization
EPSS
0.005
Percentile
77.3%
libarchive is vulnerable to Use After Free. libarchive The vulnerability exists due to the lack of sanitization of the copy_string.
References
seclists.org/fulldisclosure/2022/Mar/27
seclists.org/fulldisclosure/2022/Mar/28
seclists.org/fulldisclosure/2022/Mar/29
bugs.chromium.org/p/oss-fuzz/issues/detail?id=32375
github.com/google/oss-fuzz-vulns/blob/main/vulns/libarchive/OSV-2021-557.yaml
lists.fedoraproject.org/archives/list/[email protected]/message/SE5NJQNM22ZE5Z55LPAGCUHSBQZBKMKC/
secdb.alpinelinux.org/edge/main.yaml
secdb.alpinelinux.org/v3.15/main.yaml
security.gentoo.org/glsa/202208-26
support.apple.com/kb/HT213182
support.apple.com/kb/HT213183
support.apple.com/kb/HT213193
Related
nessus
nessus
Photon OS 4.0: Libarchive PHSA-2023-4.0-0417
2024-07-24 00:00:00
EulerOS 2.0 SP10 : libarchive (EulerOS-SA-2022-1244)
2022-02-25 00:00:00
EulerOS 2.0 SP9 : libarchive (EulerOS-SA-2022-1031)
2022-01-28 00:00:00
cvelist
cvelist
CVE-2021-36976
2021-07-20 06:49:15
debiancve
debiancve
CVE-2021-36976
2021-07-20 07:15:07
cbl_mariner
cbl_mariner
CVE-2021-36976 affecting package libarchive for versions less than 3.6.0-1
2022-04-09 06:51:47
CVE-2021-36976 affecting package libarchive 3.4.2-3
2022-08-24 22:05:05
osv
osv
CVE-2021-36976
2021-07-20 07:15:07
bsdtar-3.6.0-1.1 on GA media
2024-06-15 00:00:00
libarchive vulnerabilities
2022-02-17 13:54:10
openvas
openvas
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2022-1244)
2022-02-26 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2022-1256)
2022-02-26 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2022-1011)
2022-01-28 00:00:00
nvd
nvd
CVE-2021-36976
2021-07-20 07:15:07
redhatcve
redhatcve
CVE-2021-36976
2021-07-21 20:24:22
prion
prion
Double free
2021-07-20 07:15:00
mscve
mscve
Libarchive Remote Code Execution Vulnerability
2022-01-11 08:00:00
alpinelinux
alpinelinux
CVE-2021-36976
2021-07-20 07:15:07
ubuntucve
ubuntucve
CVE-2021-36976
2021-07-20 00:00:00
cve
cve
CVE-2021-36976
2021-07-20 07:15:07
fedora
fedora
[SECURITY] Fedora 35 Update: libarchive-3.5.3-1.fc35
2022-02-24 23:09:25
mageia
mageia
Updated libarchive packages fix security vulnerability
2022-02-12 20:31:35
suse
suse
Security update for libarchive (moderate)
2022-03-24 00:00:00
Security update for libarchive (moderate)
2022-06-02 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2022-02-17 00:00:00
gentoo
gentoo
libarchive: Multiple Vulnerabilities
2022-08-14 00:00:00
krebs
krebs
βWormableβ Flaw Leads January 2022 Patch Tuesday
2022-01-11 22:18:55
malwarebytes
malwarebytes
hivepro
hivepro
Microsoft Patch Tuesday fixes critical zero-days along with 97 other flaws
2022-01-12 07:30:07
thn
thn
threatpost
threatpost
Microsoft Faces Wormable, Critical RCE Bug & 6 Zero-Days
2022-01-11 21:54:57
apple
apple
About the security content of watchOS 8.5
2022-03-14 00:00:00
About the security content of iOS 15.4 and iPadOS 15.4
2022-03-14 00:00:00
About the security content of macOS Monterey 12.3
2022-03-14 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0417
2023-06-30 00:00:00
mskb
mskb
January 11, 2022βKB5009566 (OS Build 22000.434)
2022-01-11 08:00:00
January 11, 2022βKB5009545 (OS Build 18363.2037)
2022-01-11 08:00:00
January 11, 2022βKB5009557 (OS Build 17763.2452)
2022-01-11 08:00:00
kaspersky
kaspersky
KLA12422 Multiple vulnerabilities in Microsoft Windows
2022-01-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - January 2022
2022-01-11 21:41:56