CVE-2023-30571
LOWlibarchive < 3.6.2 - Race Condition Leading to World-Writable Directory Permissions
Title source: llmDescription
Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask() call inside archive_write_disk_posix.c changes the umask of the whole process for a very short period of time; a race condition with another thread can lead to a permanent umask 0 setting. Such a race condition could lead to implicit directory creation with permissions 0777 (without the sticky bit), which means that any low-privileged local user can delete and rename files inside those directories.
References (2)
Core 2
Core References
Issue Tracking
https://github.com/libarchive/libarchive/issues/1876
Release Notes
https://groups.google.com/g/libarchive-announce
Scores
CVSS v3
3.9
EPSS
0.0019
EPSS Percentile
9.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-362
Status
published
Products (1)
libarchive/libarchive
< 3.6.2
Published
May 29, 2023
Tracked Since
Feb 18, 2026