Lucene search
Veracode Vulnerability DatabaseVERACODE:6062HistoryApr 06, 2018 - 7:47 a.m.
Denial Of Service (DoS) Through Heap Buffer Overflow
2018-04-0607:47:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.013 Low
EPSS
Percentile
86.0%
libarchive.so is vulnerable to denial of service (DoS) through heap-based buffer overflow. The vulnerability occurs when libarchive.so reads the last character of an empty tar filename, resulting in a heap-based buffer overflow which cashes the application to crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libarchive.so | le | 12.0.4 |
Related
redhatcve
redhatcve
CVE-2015-8924
2016-06-22 06:18:50
debiancve
debiancve
CVE-2015-8924
2016-09-20 14:15:10
prion
prion
Out-of-bounds
2016-09-20 14:15:00
nvd
nvd
CVE-2015-8924
2016-09-20 14:15:10
cve
cve
CVE-2015-8924
2016-09-20 14:15:10
ubuntucve
ubuntucve
CVE-2015-8924
2015-12-31 00:00:00
cvelist
cvelist
CVE-2015-8924
2016-09-20 14:00:00
suse
suse
Security update for bsdtar (important)
2016-08-02 17:08:50
Security update for libarchive (important)
2016-08-11 17:13:38
Security update for libarchive (important)
2016-07-29 14:09:01
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:1939-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-554-1)
2023-03-08 00:00:00
openSUSE: Security Advisory for libarchive (openSUSE-SU-2016:2036-1)
2016-08-12 00:00:00
nessus
nessus
SUSE SLES11 Security Update : bsdtar (SUSE-SU-2016:1939-1)
2016-08-29 00:00:00
Debian DLA-554-1 : libarchive security update
2016-07-22 00:00:00
SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2016:1909-1)
2016-08-29 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in libarchive affect PowerKVM
2018-06-18 01:33:29
debian
debian
[SECURITY] [DLA 554-1] libarchive security update
2016-07-21 06:10:45
ubuntu
ubuntu
libarchive vulnerabilities
2016-07-14 00:00:00
cloudfoundry
cloudfoundry
USN-3033-1 libarchive vulnerability | Cloud Foundry
2016-08-25 00:00:00
amazon
amazon
Important: libarchive
2016-09-27 10:30:00
centos
centos
bsdcpio, bsdtar, libarchive security update
2016-09-16 00:18:58
redhat
redhat
(RHSA-2016:1844) Important: libarchive security update
2016-09-12 15:10:21
oraclelinux
oraclelinux
libarchive security update
2016-09-12 00:00:00
gentoo
gentoo
libarchive: Multiple vulnerabilities
2017-01-01 00:00:00