AIKIDO-2024-10337
libarchive.libarchive is vulnerable to DoS possible due to improper check for exceptional conditions
34
Low
libarchive.libarchive c++
AIKIDO-2024-10337: libarchive.libarchive is vulnerable to DoS possible due to improper check for exceptional conditions in versions 3.0.0a - 3.7.6.
DoS possible due to improper check for exceptional conditions
Vuln in 3.0.0a - 3.7.6
Fixed in 3.7.7
No CVE available
TL;DR
Affected versions of the package are vulnerable to crashes on extremely large filenames of an inner gzip.
Who does this affect?
You're affected if you are using a version which is within vulnerability ranges.
How can it be fixed?
Upgrade libarchive.libarchive library to patch version.
Background info
Don’t be left in the dark
With in-house intel and access to top vulnerability databases, see it all with Aikido.
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium
🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US