CVE-2006-5680
FreeBSD 6-STABLE 2006-09-05 to 2006-11-08 - Denial of Service via Malformed Archive Processing
Title source: llmDescription
The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and before 2006-11-08 allows context-dependent attackers to cause a denial of service (CPU consumption) via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which triggers an infinite loop that attempts to read more data.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/30137
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017199
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/22801
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/22723
Exploit, Vendor Advisory vendor-advisory
x_refsource_freebsd
http://security.freebsd.org/advisories/FreeBSD-SA-06:24.libarchive.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20961
Scores
EPSS
0.0079
EPSS Percentile
74.1%
Details
Status
published
Products (1)
freebsd/freebsd
6 stable
Published
Nov 09, 2006
Tracked Since
Feb 18, 2026