threat
engine
.sh
Back
·
··:··
Home
/
Product
/
libarchive
Product
libarchive
83 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-5745
all versions
A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the
5.5
MEDIUM
CVE-2026-5121
all versions
A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation
7.5
HIGH
CVE-2026-4426
all versions
A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper v
6.5
MEDIUM
CVE-2026-4424
all versions
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to impro
7.5
HIGH
CVE-2025-60753
<= 3.8.1
An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processi
5.5
MEDIUM
CVE-2025-5918
< 3.8.0
A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar,
3.9
LOW
CVE-2025-5917
< 3.8.0
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling pre
2.8
LOW
CVE-2025-5916
< 3.8.0
A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when p
3.9
LOW
CVE-2025-5915
< 3.8.0
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a
6.6
MEDIUM
CVE-2025-5914
< 3.8.0
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() functio
7.8
HIGH
CVE-2024-48615
<= 3.7.6
Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function header_pax_extensio
7.5
HIGH
CVE-2025-25724
<= 3.7.7
list_item_verbose in tar/util.c in libarchive through 3.7.7 does not check an strftime return value, which can lead to a denial of
4.0
MEDIUM
CVE-2025-1632
<= 3.7.7
A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the
3.3
LOW
CVE-2024-48958
>= 3.6.0 and < 3.7.5
execute_filter_delta in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted arc
7.8
HIGH
CVE-2024-48957
>= 3.6.0 and < 3.7.5
execute_filter_audio in archive_read_support_format_rar.c in libarchive before 3.7.5 allows out-of-bounds access via a crafted arc
7.8
HIGH
CVE-2024-37407
all versions
Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This oc
9.1
CRITICAL
CVE-2024-26256
< 3.7.4
Libarchive Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-30571
<= 3.6.2
Libarchive through 3.6.2 can cause directories to have world-writable permissions. The umask() call inside archive_write_disk_posi
3.9
LOW
CVE-2022-36227
>= 3.0.0 and < 3.6.2
In libarchive before 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL poi
9.8
CRITICAL
CVE-2021-31566
< 3.5.2
An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and
7.8
HIGH
CVE-2021-23177
< 3.5.2
An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of t
7.8
HIGH
CVE-2022-26280
all versions
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipx_lzma_alone_init.
6.5
MEDIUM
CVE-2021-36976
>= 3.4.1 and <= 3.5.2
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
6.5
MEDIUM
CVE-2020-21674
all versions
Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string.c) in libarchive-3.4.1dev allows remote attackers t
6.5
MEDIUM
CVE-2020-9308
>= 3.4.0 and < 3.4.2
archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to unpack a RAR5 file with an invalid or corrupted header (
8.8
HIGH
CVE-2019-19221
all versions
In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc
5.5
MEDIUM
CVE-2019-18408
< 3.4.0
archive_read_format_rar_read_data in archive_read_support_format_rar.c in libarchive before 3.4.0 has a use-after-free in a certai
7.5
HIGH
CVE-2019-11463
< 3.4.0
A memory leak in archive_read_format_zip_cleanup in archive_read_support_format_zip.c in libarchive 3.3.4-dev allows remote attack
5.5
MEDIUM
CVE-2019-1000020
>= 2.8.0 and < 3.4.0
libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards (version v2.8.0 onwards) contains a CWE-835: Loop with
6.5
MEDIUM
CVE-2019-1000019
>= 3.0.2 and < 3.4.0
libarchive version commit bf9aec176c6748f0ee7a678c5f9f9555b9a757c1 onwards (release v3.0.2 onwards) contains a CWE-125: Out-of-bou
6.5
MEDIUM
CVE-2018-1000880
>= 3.2.0 and < 3.4.0
libarchive version commit 9693801580c0cf7c70e862d305270a16b52826a7 onwards (release v3.2.0 onwards) contains a CWE-20: Improper In
6.5
MEDIUM
CVE-2018-1000879
>= 3.3.0 and < 3.4.0
libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards (release v3.3.0 onwards) contains a CWE-476: NULL Point
6.5
MEDIUM
CVE-2018-1000878
>= 3.1.0 and < 3.4.0
libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards (release v3.1.0 onwards) contains a CWE-416: Use After
8.8
HIGH
CVE-2018-1000877
>= 3.1.0 and < 3.4.0
libarchive version commit 416694915449219d505531b1096384f3237dd6cc onwards (release v3.1.0 onwards) contains a CWE-415: Double Fre
8.8
HIGH
CVE-2017-14503
all versions
libarchive 3.3.2 suffers from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracti
6.5
MEDIUM
CVE-2017-14502
all versions
read_header in archive_read_support_format_rar.c in libarchive 3.3.2 suffers from an off-by-one error for UTF-16 names in RAR arch
7.5
HIGH
CVE-2017-14501
all versions
An out-of-bounds read flaw exists in parse_file_info in archive_read_support_format_iso9660.c in libarchive 3.3.2 when extracting
6.5
MEDIUM
CVE-2017-14166
all versions
libarchive 3.3.2 allows remote attackers to cause a denial of service (xml_data heap-based buffer over-read and application crash)
6.5
MEDIUM
CVE-2016-10350
all versions
The archive_read_format_cab_read_header function in archive_read_support_format_cab.c in libarchive 3.2.2 allows remote attackers
5.5
MEDIUM
CVE-2016-10349
all versions
The archive_le32dec function in archive_endian.h in libarchive 3.2.2 allows remote attackers to cause a denial of service (heap-ba
5.5
MEDIUM
CVE-2016-10209
all versions
The archive_wstring_append_from_mbs function in archive_string.c in libarchive 3.2.2 allows remote attackers to cause a denial of
5.5
MEDIUM
CVE-2016-8689
all versions
The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of se
7.5
HIGH
CVE-2016-8688
all versions
The mtree bidder in libarchive 3.2.1 does not keep track of line sizes when extending the read-ahead, which allows remote attacker
5.5
MEDIUM
CVE-2016-8687
all versions
Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a deni
7.5
HIGH
CVE-2017-5601
all versions
An error in the lha_read_file_header_1() function (archive_read_support_format_lha.c) in libarchive 3.2.2 allows remote attackers
7.5
HIGH
CVE-2016-7166
<= 3.1.901a
libarchive before 3.2.0 does not limit the number of recursive decompressions, which allows remote attackers to cause a denial of
5.5
MEDIUM
CVE-2016-6250
<= 3.2.0
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to cause a denial of service (applicatio
8.6
HIGH
CVE-2016-5844
<= 3.2.0
Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application cr
6.5
MEDIUM
CVE-2016-5418
<= 3.2.0
The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow r
7.5
HIGH
CVE-2016-4809
<= 3.2.0
The archive_read_format_cpio_read_header function in archive_read_support_format_cpio.c in libarchive before 3.2.1 allows remote a
7.5
HIGH
CVE-2016-4302
<= 3.2.0
Heap-based buffer overflow in the parse_codes function in archive_read_support_format_rar.c in libarchive before 3.2.1 allows remo
7.8
HIGH
CVE-2016-4301
<= 3.2.0
Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows
7.8
HIGH
CVE-2016-4300
<= 3.2.0
Integer overflow in the read_SubStreamsInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.1 allows remot
7.8
HIGH
CVE-2015-8934
<= 3.1.901a
The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to
5.5
MEDIUM
CVE-2015-8933
<= 3.1.901a
Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allo
5.5
MEDIUM
CVE-2015-8932
<= 3.1.901a
The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to
5.5
MEDIUM
CVE-2015-8931
<= 3.1.901a
Multiple integer overflows in the (1) get_time_t_max and (2) get_time_t_min functions in archive_read_support_format_mtree.c in li
7.8
HIGH
CVE-2015-8930
<= 3.1.901a
bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory
7.5
HIGH
CVE-2015-8929
<= 3.1.901a
Memory leak in the __archive_read_get_extract function in archive_read_extract2.c in libarchive before 3.2.0 allows remote attacke
5.5
MEDIUM
CVE-2015-8928
<= 3.1.901a
The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause
5.5
MEDIUM
CVE-2015-8927
<= 3.1.901a
The trad_enc_decrypt_update function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to ca
5.5
MEDIUM
CVE-2015-8926
<= 3.1.901a
The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attac
5.5
MEDIUM
CVE-2015-8925
<= 3.1.901a
The readline function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial
5.5
MEDIUM
CVE-2015-8924
<= 3.1.901a
The archive_read_format_tar_read_header function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote att
5.5
MEDIUM
CVE-2015-8923
<= 3.1.901a
The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote at
6.5
MEDIUM
CVE-2015-8922
<= 3.1.901a
The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a d
5.5
MEDIUM
CVE-2015-8921
<= 3.1.901a
The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (ou
7.5
HIGH
CVE-2015-8920
<= 3.1.901a
The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a den
5.5
MEDIUM
CVE-2015-8919
<= 3.1.901a
The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers
7.5
HIGH
CVE-2015-8918
<= 3.1.901a
The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of ser
7.5
HIGH
CVE-2015-8917
<= 3.1.901a
bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an
7.5
HIGH
CVE-2015-8916
<= 3.1.901a
bsdtar in libarchive before 3.2.0 returns a success code without filling the entry when the header is a "split file in multivolume
6.5
MEDIUM
CVE-2015-8915
<= 3.1.901a
bsdcpio in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read and crash) via crafted cpio
5.5
MEDIUM
CVE-2016-1541
<= 3.1.901a
Heap-based buffer overflow in the zip_read_mac_metadata function in archive_read_support_format_zip.c in libarchive before 3.2.0 a
8.8
HIGH
CVE-2015-2304
<= 3.1.2
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary fil
CVE-2013-0211
<= 3.1.2
Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier,
CVE-2011-1779
all versions
Multiple use-after-free vulnerabilities in libarchive 2.8.4 and 2.8.5 allow remote attackers to cause a denial of service (applica
CVE-2011-1778
<= 2.8.5
Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service (application crash) or possibly e
CVE-2011-1777
<= 2.8.5
Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in lib
CVE-2010-4666
all versions
Buffer overflow in libarchive 3.0 pre-release code allows remote attackers to cause a denial of service (application crash) or pos
CVE-2007-3645
<= 2.2.3
archive_read_support_format_tar.c in libarchive before 2.2.4 allows user-assisted remote attackers to cause a denial of service (c
CVE-2007-3644
<= 2.2.3
archive_read_support_format_tar.c in libarchive before 2.2.4 allows user-assisted remote attackers to cause a denial of service (i
CVE-2007-3641
<= 2.2.3
archive_read_support_format_tar.c in libarchive before 2.2.4 does not properly compute the length of a certain buffer when process
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin