Security Advisory

CVE-2018-1000879

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-20 17:00:00

Last updated 2024-08-05 12:47:57

Assigner mitre

State PUBLISHED

Description

libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards (release v3.3.0 onwards) contains a CWE-476: NULL Pointer Dereference vulnerability in ACL parser - libarchive/archive_acl.c, archive_acl_from_text_l() that can result in Crash/DoS. This attack appear to be exploitable via the victim must open a specially crafted archive file.

← Browse all CVEs View on cve.org ↗