Search Results (Refine Search)
- CPE Product Version: cpe:/a:libarchive:libarchive:3.1.2::~~~x64~~
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-2304 |
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive. Published: March 15, 2015; 3:59:00 PM -0400 |
V3.x:(not available) V2.0: 6.4 MEDIUM |
CVE-2013-0211 |
Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers to cause a denial of service (crash) via unspecified vectors, which triggers an improper conversion between unsigned and signed types, leading to a buffer overflow. Published: September 30, 2013; 6:55:04 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |