Security Advisories (formerly Vulnerability Notices)

Blog Articles

SA-2024-109 - libarchive execute filter delta (CVE-2024-48958)

Summary execute_filter_delta in archive_read_support_format_rar.c in libarchive allows out-of-bounds access via a crafted archive file because src can move beyond dst Impact Details OS/Product Exp...

SA-2024-108 - libarchive execute filter audio (CVE-2024-48957)

Summary execute_filter_audio in archive_read_support_format_rar.c in libarchive before allows out-of-bounds access via a crafted archive file because src can move beyond dst Impact Details OS/Produ...

SA-2024-107 - libarchive Null Reference Pointer Deference (CVE-2022-36227)

Summary In libarchive, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer derefer...