CVE-2025-5917

Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

Published: 6/9/2025 Last updated: 12/12/2025 Reserved: 6/9/2025

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictable program behavior, crashes, or in specific circumstances, could be leveraged as a building block for more sophisticated exploitation. This bug affects libarchive versions prior to 3.8.0.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	2.8	Low	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L

Opam packages affected (1)

conf-cpio

Products affected (7)

Product	Vendor	Version
		QCN9024
Red Hat Enterprise Linux 10	Red Hat	Android kernel
Red Hat Enterprise Linux 6	Red Hat	QCS4490
Red Hat Enterprise Linux 7	Red Hat	prior to 2019.5.0
Red Hat Enterprise Linux 8	Red Hat	QCS6490
Red Hat Enterprise Linux 9	Red Hat	< 6.0.6003.21507
Red Hat OpenShift Container Platform 4	Red Hat	<= 2.1

CVE-2025-5917

Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

Metrics

Opam packages affected (1)

Products affected (7)

References (4)