« List of all CVEs

CVE-2016-4302

Published: 9/21/2016 Last updated: 8/6/2024 Reserved: 4/27/2016

Heap-based buffer overflow in the parse_codes function in archive_read_support_format_rar.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a RAR file with a zero-sized dictionary.

CNA assigner: certcc (37e5125f-f79b-445b-8fad-9564f167944b) Requested by: n/a

Opam packages affected (1)

conf-cpio

Products affected (1)

Product Vendor Version
n/a n/a 1.14.1

References (22)