New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap-buffer-overflow in archive_read_format_cab_read_header #835
Comments
Please test against trunk. |
current master seems to be fine with the provided testcase |
This issue has been assigned CVE-2016-10350 |
Hi I tried to bisect to find the fixing commit, the following lead me to 88eb9e1 to fix this issue.
|
tkatila
added a commit
to intel/ref-os-iot
that referenced
this issue
Jun 8, 2017
libarchive/libarchive#835 libarchive/libarchive#834 libarchive/libarchive@88eb9e1?diff=unified Signed-off-by: Tuomas Katila <tuomas.katila@intel.com> Reviewed-by: Ravindran, Arun <arun.ravindran@intel.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
On 3.2.2:
Testcase: https://github.com/asarubbo/poc/blob/master/00106-libarchive-heapoverflow-archive_read_format_cab_read_header
Could you check if it a duplicate of #797 or a similar bug?
The text was updated successfully, but these errors were encountered: