VDB

GCVE-110-MAGEIA-2018-361

GCVE-110-MAGEIA-2018-361
Advisory Published
Vulnetix · Advisory published August 31, 2018
The updated packages fix security vulnerabilities: An out-of-bounds read flaw exists in parse_file_info in archive_read_support_format_iso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archive_read_format_iso9660_read_header (CVE-2017-14501). libarchive 3.3.2 suffers from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a specially crafted lha archive, related to lha_crc16 (CVE-2017-14503).

Affected Products

VendorProductVersionsPlatforms
Mageialibarchive0 (affected), 3.3.1-1.2.mga6 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›