Vulnerability Manager Plus

SUSE-SU-2018:3640-1(SUSE Linux Enterprise Desktop 12-SP3 ) libarchive13-debuginfo-3.1.2-26.3.1.x86_64.rpm

Risk Information

Base Score

6.5

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS Score

Exploitation Probability

1.359%

CVE Information

Source CVE
CVE-2017-14166

Associated CVE
CVE-2017-14166
CVE-2016-10349
CVE-2016-10350
CVE-2016-10209

Patch Details

No records found

References

http://www.securityfocus.com/bid/100347
http://www.securityfocus.com/bid/97327
https://blogs.gentoo.org/ago/2017/09/06/libarchive-heap-based-buffer-overflow-in-xml_data-archive_read_support_format_xar-c/
https://github.com/libarchive/libarchive/commit/fa7438a0ff4033e4741c807394a9af6207940d71
https://github.com/libarchive/libarchive/issues/834
https://github.com/libarchive/libarchive/issues/835
https://github.com/libarchive/libarchive/issues/842
https://security.gentoo.org/glsa/201710-19