Download
| Alert*
oval:org.secpod.oval:def:706313
libarchive: Library to read/write archive files Several security issues were fixed in libarchive. oval:org.secpod.oval:def:3300879 SUSE Security Update: Security update for libarchive oval:org.secpod.oval:def:78262 The host is installed with Apple Mac OS 12 before 12.3 and is prone to a remote code execution vulnerability. The flaws are present in the application, which fails to properly handle a validation issue. Successful exploitation leads to memory corruption. oval:org.secpod.oval:def:19500003 An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. A l ... oval:org.secpod.oval:def:89047724 This update for libarchive fixes the following issues: - CVE-2022-26280: Fixed out-of-bounds read via the component zipx_lzma_alone_init . - CVE-2021-36976: Fixed use-after-free in copy_string . - CVE-2017-5601: Fixed out-of-bounds memory access preventing denial-of-service . oval:org.secpod.oval:def:121700 Libarchive is a programming library that can create and read several different streaming archive formats, including most popular tar variants, several cpio formats, and both BSD and GNU ar variants. It can also write shar archives and read ISO9660 CDROM images and ZIP archives. oval:org.secpod.oval:def:78418 libarchive: Library to read/write archive files Several security issues were fixed in libarchive. oval:org.secpod.oval:def:77130 Libarchive Remote Code Execution Vulnerability. CVE-2021-36976 is regarding a vulnerability in the libarchive open source library which is used by Windows. The January 2022 Windows Security Updates include the most recent version of this library which addresses the vulnerability and others. oval:org.secpod.oval:def:89048205 This update for libarchive fixes the following issues: - CVE-2021-36976: Fixed an invalid memory access that could cause data corruption . Non-security updates: - Updated references for CVE-2017-5601, which was already fixed in a previous version . oval:org.secpod.oval:def:89047492 This update for libarchive fixes the following issues: - CVE-2021-36976: Fixed an invalid memory access that could cause data corruption . Non-security updates: - Updated references for CVE-2017-5601, which was already fixed in a previous version . oval:org.secpod.oval:def:77168 The host is missing a critical security update for KB5009566 oval:org.secpod.oval:def:77167 The host is missing a critical security update for KB5009557 oval:org.secpod.oval:def:77166 The host is missing a critical security update for KB5009555 oval:org.secpod.oval:def:77164 The host is missing a critical security update for KB5009545 oval:org.secpod.oval:def:77163 The host is missing a critical security update for KB5009543 oval:org.secpod.oval:def:78234 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. On successful exploitation, allow attackers to cause unspecified impact. |