CVE-2024-57970 | libarchive up to 3.7.7 TAR Archive archive_read_support_format_tar.c header_gnu_longlink buffer over-read (Issue 2415)

Posted by Angelo Barbosa | Feb 16, 2025 | CVE

A vulnerability was found in libarchive up to 3.7.7. It has been rated as problematic. This issue affects the function header_gnu_longlink of the file archive_read_support_format_tar.c of the component TAR Archive Handler. The manipulation leads to buffer over-read.

The identification of this vulnerability is CVE-2024-57970. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-57970 | libarchive up to 3.7.7 TAR Archive archive_read_support_format_tar.c header_gnu_longlink buffer over-read (Issue 2415)

Related Posts

CVE-2024-42052 | Splashtop Streamer up to 3.5.7.x on Windows Installation wevtutil.exe temp file

CVE-2023-47840 | Qode Essential Addons Plugin up to 1.5.2 on WordPress authorization

CVE-2024-47574 | Fortinet FortiClientWindows up to 6.4.10/7.0.12/7.2.4/7.4.0 Named Pipe Message authentication bypass (FG-IR-24-199)

CVE-2024-12283 | WP Pipes Plugin up to 1.4.1 on WordPress x1 cross site scripting