[Secure-testing-team] Bug#874539: libarchive: CVE-2017-14166: heap-based buffer overflow in xml_data (archive_read_support_format_xar.c)
Salvatore Bonaccorso
carnil at debian.org
Thu Sep 7 06:00:41 UTC 2017
Source: libarchive
Version: 3.1.2-11
Severity: important
Tags: upstream patch security
Forwarded: https://github.com/libarchive/libarchive/issues/935
Hi,
the following vulnerability was published for libarchive.
CVE-2017-14166[0]:
| libarchive 3.3.2 allows remote attackers to cause a denial of service
| (xml_data heap-based buffer over-read and application crash) via a
| crafted xar archive, related to the mishandling of empty strings in the
| atol8 function in archive_read_support_format_xar.c.
Although not directly reproducible, the check for char_cnt is missing
as well in our versions.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2017-14166
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14166
[1] https://github.com/libarchive/libarchive/issues/935
Regards,
Salvatore
More information about the Secure-testing-team
mailing list