pkg:Alpine/libarchive
共 26 筆 CVECRITICAL1HIGH15MEDIUM10
✅ 檢查你的版本
所有已知漏洞
- from 0, < 3.5.3-r1
- HIGH8.8CVE-2020-9308archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to unpack a RAR5 file with an invalid or corrupted header (such as a…from 0, < 3.4.2-r0
- from 0, < 3.2.0-r0
- HIGH8.6CVE-2016-6250Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash)…from 0, < 3.2.1-r0
- HIGH7.8CVE-2025-25724list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of service…from 0, < 3.7.9-r0
- HIGH7.8CVE-2024-48958execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file…from 0, < 3.7.5-r0
- HIGH7.8CVE-2024-48957execute_filter_audio in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file…from 0, < 3.7.5-r0
- from 0, < 3.7.4-r0
- HIGH7.8CVE-2021-31566An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of…from 0, < 3.5.3-r0
- HIGH7.8CVE-2016-4302Heap-based buffer overflow in the parse_codes function in archive_read_support_format_rar.c in libarchive before 3.2.1 allows remote attack…from 0, < 3.2.1-r0
- HIGH7.8CVE-2016-4300Integer overflow in the read_SubStreamsInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.1 allows remote attacke…from 0, < 3.2.1-r0
- from 0, < 3.3.3-r1
- HIGH7.5CVE-2017-14502read_header in archive_read_support_format_rar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, lea…from 0, < 3.3.3-r0
- from 0, < 3.2.2-r0
- HIGH7.5CVE-2016-4809The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers…from 0, < 3.2.1-r0
- from 0, < 3.7.5-r0
- MEDIUM6.5CVE-2022-26280Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipx_lzma_alone_init.from 0, < 3.6.1-r0
- from 0, < 3.5.3-r0
- MEDIUM6.5CVE-2017-14503libarchive 3.3.2 suffers from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a spec…from 0, < 3.3.3-r0
- MEDIUM6.5CVE-2017-14501An out-of-bounds read flaw exists in parse_file_info in archive_read_support_format_iso9660.c in libarchive 3.3.2 when extracting a special…from 0, < 3.3.3-r0
- from 0, < 3.3.2-r1
- MEDIUM6.5CVE-2016-5844Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via…from 0, < 3.2.1-r0
- from 0, < 3.7.9-r0
- from 0, < 3.4.2-r0
- MEDIUM5.5CVE-2015-8934The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a…from 0, < 3.2.1-r0
- MEDIUM4.0CVE-2024-57970libarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in archive_read_support_format_tar.c via a TAR archive be…from 0, < 3.7.9-r0