libarchive 3.7.4

CPE Details

libarchive 3.7.4
libarchive
libarchive
3.7.4
2024-08-01
12h27 +00:00
2024-08-01
12h27 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:libarchive:libarchive:3.7.4:*:*:*:*:*:*:*

Informations

Vendor

libarchive

Product

libarchive

Version

3.7.4

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-1632 2025-02-24 13h31 +00:00 A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
4.8
Medium
CVE-2024-48957 2024-10-09 22h00 +00:00 execute_filter_audio in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
7.8
High
CVE-2024-48958 2024-10-09 22h00 +00:00 execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted archive file because src can move beyond dst.
7.8
High