CVE-2025-1632 | libarchive up to 3.7.7 bsdunzip.c list null pointer dereference

Inserito da Angelo Barbosa | Feb 24, 2025 | CVE

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference.

This vulnerability is uniquely identified as CVE-2025-1632. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1632 | libarchive up to 3.7.7 bsdunzip.c list null pointer dereference

Post correlati

CVE-2024-6945 | Flute CMS 0.2.2.4-alpha Avatar Upload Page ImagesController.php avatar unrestricted upload

CVE-2024-45200 | Nintendo Mario Kart 8 Deluxe up to 3.0.2 Local Multiplayer KartLANPwn stack-based overflow

CVE-2024-22140 | Cozmoslabs Profile Builder Pro Plugin up to 3.10.0 on WordPress cross-site request forgery

CVE-2023-46690 | Delta Electronics InfraSuite Device Master up to 1.0.7 path traversal (icsa-23-331-01)