Read Memory Access

2022-05-0510:25:16

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

libarchive vulnerability

denial of service

lzma_decode

memory access

application crash

EPSS

Percentile

12.6%

JSON

libarchive.so is vulnerable to denial of service. The function lzma_decodedoes not validate the size parameter sufficiently, allowing an attacker to perform a read memory access and causing an application crash.

References

github.com/libarchive/libarchive/issues/1672

EPSS

Percentile

12.6%

JSON

Related for VERACODE:35388