First published: Wed Oct 16 2024(Updated: )
It was discovered that libarchive mishandled certain memory checks, which could result in a NULL pointer dereference. An attacker could potentially use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-36227) It was discovered that libarchive mishandled certain memory operations, which could result in an out-of-bounds memory access. An attacker could potentially use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2024-48957, CVE-2024-48958)
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libarchive13t64 | <3.7.2-2ubuntu0.2 | 3.7.2-2ubuntu0.2 |
Ubuntu Ubuntu | =24.04 | |
All of | ||
ubuntu/libarchive13 | <3.6.0-1ubuntu1.2 | 3.6.0-1ubuntu1.2 |
Ubuntu Ubuntu | =22.04 | |
All of | ||
ubuntu/libarchive13 | <3.4.0-2ubuntu1.3 | 3.4.0-2ubuntu1.3 |
Ubuntu Ubuntu | =20.04 | |
All of | ||
ubuntu/libarchive13 | <3.2.2-3.1ubuntu0.7+esm1 | 3.2.2-3.1ubuntu0.7+esm1 |
Ubuntu Ubuntu | =18.04 | |
All of | ||
ubuntu/libarchive13 | <3.1.2-11ubuntu0.16.04.8+esm1 | 3.1.2-11ubuntu0.16.04.8+esm1 |
Ubuntu Ubuntu | =16.04 | |
All of | ||
ubuntu/libarchive13 | <3.1.2-7ubuntu2.8+esm3 | 3.1.2-7ubuntu2.8+esm3 |
Ubuntu Ubuntu | =14.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Contains the following vulnerabilities)