Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2016-8689

The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of service (out-of-bounds read) via multiple EmptyStream attributes in a header in a 7zip archive.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2016101...
MISC: https://blogs.gentoo.o...
CONFIRM: https://bugzilla.redha...
CONFIRM: https://github.com/lib...
GENTOO: GLSA-201701-03
SUSE: openSUSE-SU-2016:3002
BID: 93781
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2016-8689

Related bugs

References