#VU15955 Out-of-bounds read in libarchive


Published: 2018-11-19 | Updated: 2018-11-22

Vulnerability identifier: #VU15955

Vulnerability risk: Low

CVSSv3.1: 3.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-14503

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libarchive
Client/Desktop applications / Software for archiving

Vendor: libarchive

Description
The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a specially crafted lha archive. A remote attacker can trigger an out-of-bounds read, related to lha_crc16 and cause the service to crash.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libarchive: 3.3.2

External links
http://github.com/libarchive/libarchive/issues/948

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell EMC Data Computing Appliance (DCA)
Red Hat update for libarchive
Amazon Linux AMI update for libarchive
Out-of-bounds read in libarchive (Alpine package)
Gentoo update for libarchive
Red Hat update for libarchive
Debian update for libarchive
OpenSUSE Linux update for libarchive
OpenSUSE Linux update for libarchive
Multiple vulnerabilities in libarchive