CVE-2015-8919 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2015-8919?

CVE-2015-8919 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-8919?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Libarchive Libarchive, Novell Suse Linux Enterprise Software Development Kit, Novell Suse Linux Enterprise Desktop, Novell Suse Linux Enterprise Server.

Vulnerability Description

The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) lzh or (2) lha file.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	12.04
Libarchive	Libarchive	<= 3.1.901a
Novell	Suse Linux Enterprise Software Development Kit	12.0
Novell	Suse Linux Enterprise Desktop	12.0
Novell	Suse Linux Enterprise Server	12.0

Related Weaknesses (CWE)

CWE-119

References

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00025.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-1844.html
http://www.debian.org/security/2016/dsa-3657
http://www.openwall.com/lists/oss-security/2016/06/17/2Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/06/17/5Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.h
http://www.securityfocus.com/bid/91302
http://www.ubuntu.com/usn/USN-3033-1Third Party Advisory
https://blog.fuzzing-project.org/47-Many-invalid-memory-access-issues-in-libarchThird Party Advisory
https://github.com/libarchive/libarchive/issues/510Patch
https://security.gentoo.org/glsa/201701-03
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00025.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-1844.html
http://www.debian.org/security/2016/dsa-3657
http://www.openwall.com/lists/oss-security/2016/06/17/2Third Party Advisory

FAQ

What is CVE-2015-8919?

CVE-2015-8919 is a vulnerability with a CVSS score of 7.5 (HIGH). The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) l...

How severe is CVE-2015-8919?

CVE-2015-8919 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-8919?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Libarchive Libarchive, Novell Suse Linux Enterprise Software Development Kit, Novell Suse Linux Enterprise Desktop, Novell Suse Linux Enterprise Server.