CVE-2015-8918 (libarchive, suse_linux_enterprise_desktop, suse_linux_enterprise_server, suse_linux_enterprise_software_development

fm-air

CVE-2015-8918 (libarchive, suse_linux_enterprise_desktop, suse_linux_enterprise_server, suse_linux_enterprise_software_development_kit)

The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy."

21 сентября 2016, среда 12:00 Оставить комментарий Источник

CVE-2015-8919 (libarchive, suse_linux_enterprise_desktop, suse_linux_enterprise_server, suse_linux_enterprise_software_development_kit, ubuntu_linux)

The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) lzh or (2) lha file.

21 сентября 2016, среда 12:00 Источник
CVE-2015-8920 (libarchive, suse_linux_enterprise_desktop, suse_linux_enterprise_server, suse_linux_enterprise_software_development_kit, ubuntu_linux)

The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file.

21 сентября 2016, среда 12:00 Источник
CVE-2015-8921 (libarchive, suse_linux_enterprise_desktop, suse_linux_enterprise_server, suse_linux_enterprise_software_development_kit, ubuntu_linux)

The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

21 сентября 2016, среда 12:00 Источник

443870 it / 92 ch / 16 us