VDB

GCVE-110-MAGEIA-2020-253

GCVE-110-MAGEIA-2020-253
Advisory Published
Vulnetix · Advisory published June 10, 2020
Updated libarchive packages fix security vulnerability: archive_read_support_format_lha.c in libarchive before 3.4.1 does not ensure valid sizes for UTF-16 input, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted LHA archive (CVE-2019-20509). The libarchive package has been updated to version 3.4.3, fixing this issue and other bugs.

Affected Products

VendorProductVersionsPlatforms
Mageialibarchive0 (affected), 3.4.3-1.mga7 (unaffected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›