CVE-2016-4809 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2016-4809?

CVE-2016-4809 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-4809?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Hpc Node, Redhat Enterprise Linux Server, Redhat Enterprise Linux Workstation, Redhat Enterprise Linux Hpc Node Eus.

Vulnerability Description

The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a CPIO archive with a large symlink.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux Hpc Node	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Workstation	6.0
Redhat	Enterprise Linux Hpc Node Eus	7.2
Redhat	Enterprise Linux Server Aus	7.2
Redhat	Enterprise Linux Server Eus	7.2
Oracle	Linux	6
Libarchive	Libarchive	<= 3.2.0

Related Weaknesses (CWE)

CWE-20

References

http://rhn.redhat.com/errata/RHSA-2016-1844.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-1850.htmlThird Party Advisory
http://www.debian.org/security/2016/dsa-3657
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.hThird Party Advisory
http://www.securityfocus.com/bid/91813Third Party AdvisoryVDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1347084Issue Tracking
https://github.com/libarchive/libarchive/commit/fd7e0c02Issue TrackingPatch
https://github.com/libarchive/libarchive/issues/705Issue TrackingPatch
https://security.gentoo.org/glsa/201701-03
http://rhn.redhat.com/errata/RHSA-2016-1844.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-1850.htmlThird Party Advisory
http://www.debian.org/security/2016/dsa-3657
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.hThird Party Advisory
http://www.securityfocus.com/bid/91813Third Party AdvisoryVDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1347084Issue Tracking

FAQ

What is CVE-2016-4809?

CVE-2016-4809 is a vulnerability with a CVSS score of 7.5 (HIGH). The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a CPIO a...

How severe is CVE-2016-4809?

CVE-2016-4809 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-4809?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Hpc Node, Redhat Enterprise Linux Server, Redhat Enterprise Linux Workstation, Redhat Enterprise Linux Hpc Node Eus.