CVE-2015-8924
MEDIUMLibarchive < 3.1.901a - Out-of-Bounds Read
Title source: ruleDescription
The archive_read_format_tar_read_header function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted tar file.
References (11)
Scores
CVSS v3
5.5
EPSS
0.0033
EPSS Percentile
55.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Classification
CWE
CWE-125
Status
published
Affected Products (9)
libarchive/libarchive
< 3.1.901a
novell/suse_linux_enterprise_software_development_kit
novell/suse_linux_enterprise_desktop
novell/suse_linux_enterprise_server
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
n/a/n/a
Timeline
Published
Sep 20, 2016
Tracked Since
Feb 18, 2026