VDB

GCVE-110-MAGEIA-2016-179

GCVE-110-MAGEIA-2016-179
Advisory Published
Vulnetix · Advisory published May 18, 2016
Updated libarchive packages fix security vulnerability: Heap-based buffer overflow in the zip_read_mac_metadata function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to execute arbitrary code via crafted entry-size values in a ZIP archive (CVE-2016-1541). The libarchive package has been updated to version 3.2.0, fixing this issue and other bugs.

Affected Products

VendorProductVersionsPlatforms
Mageialibarchive0 (affected), 3.2.0-1.mga5 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›