vulnerability

SUSE: CVE-2015-8932: SUSE Linux Security Advisory

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Jul 29, 2016
Added
Jul 29, 2016
Modified
Jun 19, 2021

Description

The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which triggers an invalid left shift.

Solution(s)

suse-upgrade-libarchive-develsuse-upgrade-libarchive13
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.