Security Advisory

CVE-2016-8688

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-02-15 19:00:00

Last updated 2024-08-06 02:27:41

Assigner mitre

State PUBLISHED

Description

The mtree bidder in libarchive 3.2.1 does not keep track of line sizes when extending the read-ahead, which allows remote attackers to cause a denial of service (crash) via a crafted file, which triggers an invalid read in the (1) detect_form or (2) bid_entry function in libarchive/archive_read_support_format_mtree.c.

← Browse all CVEs View on cve.org ↗