#VU22931 Out-of-bounds read


Published: 2019-11-22 | Updated: 2020-06-17

Vulnerability identifier: #VU22931

Vulnerability risk: Medium

CVSSv3.1:

CVE-ID: CVE-2019-19221

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libarchive
Client/Desktop applications / Software for archiving

Vendor: libarchive

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in "archive_wstring_append_from_mbs" in "archive_string.c" because of an incorrect "mbrtowc" or "mbtowc" call. A remote attacker can create a specially crafted archive file, trick the victim into opening it, trigger out-of-bounds read error and read contents of memory on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

libarchive: 3.0.0 - 3.4.0


CPE

External links
http://github.com/libarchive/libarchive/commit/22b1db9d46654afc6f0c28f90af8cdc84a199f41
http://github.com/libarchive/libarchive/issues/1276


Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?


Latest bulletins with this vulnerability