CVE-2017-14502

read_header in archive_read_support_format_rar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read in archive_read_format_rar_read_header.
Configurations

Configuration 1 (hide)

cpe:2.3:a:libarchive:libarchive:3.3.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-09-17 18:29

Updated : 2024-02-04 19:29


NVD link : CVE-2017-14502

Mitre link : CVE-2017-14502

CVE.ORG link : CVE-2017-14502


JSON object : View

Products Affected

libarchive

  • libarchive
CWE
CWE-125

Out-of-bounds Read

CWE-193

Off-by-one Error