CVE-2019-11463

Published: Apr 23, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A memory leak in archive_read_format_zip_cleanup in archive_read_support_format_zip.c in libarchive 3.3.4-dev allows remote attackers to cause a denial of service via a crafted ZIP file because of a HAVE_LZMA_H typo. NOTE: this only affects users who downloaded the development code from GitHub. Users of the product's official releases are unaffected.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/libarchive/libarchive/issues/1165

x_refsource_MISC

https://github.com/libarchive/libarchive/commit/ba641f73f3d758d9032b3f0e5597a9c6e593a505

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-11463

Description

Affected Products

References