CVE-2025-5917

Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

Published: 6/9/2025 Last updated: 2/25/2026 Reserved: 6/9/2025

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictable program behavior, crashes, or in specific circumstances, could be leveraged as a building block for more sophisticated exploitation. This bug affects libarchive versions prior to 3.8.0.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	2.8	Low	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L

Opam packages affected (1)

conf-cpio

Products affected (7)

Product	Vendor	Version
		< 676a423410131d111a264d29aecbe6aadd57fb22
Red Hat Enterprise Linux 10	Red Hat	< 07added2c6cd63de047bc786b39436322abb67c0
Red Hat Enterprise Linux 6	Red Hat	< 5d4e04bf3a0f098bd9033de3a5291810fa14c7a6
Red Hat Enterprise Linux 7	Red Hat	2.6.32
Red Hat Enterprise Linux 8	Red Hat	< 2.6.32
Red Hat Enterprise Linux 9	Red Hat	<= 6.1.*
Red Hat OpenShift Container Platform 4	Red Hat	<= 6.5.*

CVE-2025-5917

Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

Metrics

Opam packages affected (1)

Products affected (7)

References (8)