CVE-2024-37407 — Out-of-bounds Read in Libarchive

CWE-125 — Out-of-bounds Read CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources

Severity

9.1CRITICALNVD

EPSS

0.5%

top 32.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libarchive Debian Libarchive Msrc Azl3 Libarchive 3.7.1-2 ON Azure Linux 3.0 +2 more

Timeline

PublishedJun 8

Latest updateJun 11

Description

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages5 packages

▶debiandebian/libarchive

▶NVDlibarchive/libarchive3.7.3

▶msrcmsrc/azl3_libarchive_3.7.1-2_on_azure_linux_3.0

▶msrcmsrc/azure_linux_3.0_arm

▶msrcmsrc/azure_linux_3.0_x64

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-xjwr-37fp-hq82: Libarchive before 3↗2024-06-08

▶

📋Vendor Advisories

Microsoft

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.↗2024-06-11

▶

Red Hat

libarchive: Out of bounds access in slurp_central_directory at archive_read_support_format_zip.c↗2024-06-08

▶

Debian

CVE-2024-37407: libarchive - Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has ...↗2024

▶