A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.
Se ha identificado una vulnerabilidad en la librería libarchive, específicamente en la función archive_read_format_rar_seek_data(). Esta falla implica un desbordamiento de enteros que puede provocar una condición de doble liberación. Explotar una vulnerabilidad de doble liberación puede provocar corrupción de memoria, lo que permite a un atacante ejecutar código arbitrario o causar una denegación de servicio.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
| Attack Vector | LOCAL |
|---|---|
| Attack Complexity | LOW |
| Privileges Required | NONE |
| User Interaction | REQUIRED |
| Scope | UNCHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Availability Impact | HIGH |
| Source | Type | Description |
|---|---|---|
| [email protected] | Secondary |
en
CWE-190
|
| Vendor | Product | Version | Update | Type |
|---|---|---|---|---|
| libarchive | libarchive | * | <built-in method update of dict object at 0x702ba71addc0> | Application |
| redhat | openshift_container_platform | 4.0 | <built-in method update of dict object at 0x702b703baec0> | Application |
| redhat | enterprise_linux | 6.0 | <built-in method update of dict object at 0x702bde7ac140> | Operating System |
| redhat | enterprise_linux | 7.0 | <built-in method update of dict object at 0x702b832ec480> | Operating System |
| redhat | enterprise_linux | 8.0 | <built-in method update of dict object at 0x702ba71ae9c0> | Operating System |
| redhat | enterprise_linux | 9.0 | <built-in method update of dict object at 0x702ba71af8c0> | Operating System |
| redhat | enterprise_linux | 10.0 | <built-in method update of dict object at 0x702bfc551f40> | Operating System |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:a:libarchive:libarchive:*:*:*:*:*:*:*:* |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:* |