Back to search
CVE-2017-14502
Published: Sep 17, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
read_header in archive_read_support_format_rar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read in archive_read_format_rar_read_header.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
USN-3859-1
vendor-advisory
x_refsource_UBUNTU
https://bugs.debian.org/875974
x_refsource_MISC
[debian-lts-announce] 20181129 [SECURITY] [DLA 1600-1] libarchive security update
mailing-list
x_refsource_MLIST
DSA-4360
vendor-advisory
x_refsource_DEBIAN
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=573
x_refsource_MISC
GLSA-201908-11
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now