CVE-2020-21674 — Out-of-bounds Write in Libarchive

CWE-787 — Out-of-bounds Write CWE-122 — Heap-based Buffer Overflow5 documents5 sources

Severity

6.5MEDIUMNVD

EPSS

1.7%

top 17.93%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libarchive Debian Libarchive

Timeline

PublishedOct 15

Latest updateMay 24

Description

Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string.c) in libarchive-3.4.1dev allows remote attackers to cause a denial of service (out-of-bounds write in heap memory resulting into a crash) via a crafted archive file. NOTE: this only affects users who downloaded the development code from GitHub. Users of the product's official releases are unaffected.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶debiandebian/libarchive

▶NVDlibarchive/libarchive3.4.1

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-crq5-4m3r-9jx2: Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string↗2022-05-24

▶

📋Vendor Advisories

Debian

CVE-2020-21674: libarchive - Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string.c...↗2020

▶

Red Hat

libarchive: heap-based buffer overflow in archive_string_append_from_wcs function in archive_string.c↗2019-12-28

▶

💬Community

Bugzilla

CVE-2020-21674 libarchive: heap-based buffer overflow in archive_string_append_from_wcs function in archive_string.c↗2020-10-15

▶