CVE

Id
60158  
CVE No.
CVE-2013-0211  
Status
Candidate  
Description
Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers to cause a denial of service (crash) via unspecified vectors, which triggers an improper conversion between unsigned and signed types, leading to a buffer overflow.  
Phase
Assigned (20121206)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
607185 60158 CVE-2013-0211 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=902998  View
607186 60158 CVE-2013-0211 CONFIRM:https://github.com/libarchive/libarchive/commit/22531545514043e04633e1c015c7540b9de9dbe4  View
607187 60158 CVE-2013-0211 FEDORA:FEDORA-2013-4522  View
607188 60158 CVE-2013-0211 URL:http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101876.html  View
607189 60158 CVE-2013-0211 FEDORA:FEDORA-2013-4537  View
607190 60158 CVE-2013-0211 URL:http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101872.html  View
607191 60158 CVE-2013-0211 FEDORA:FEDORA-2013-4576  View
607192 60158 CVE-2013-0211 URL:http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101700.html  View
607193 60158 CVE-2013-0211 FEDORA:FEDORA-2013-4592  View
607194 60158 CVE-2013-0211 URL:http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101687.html  View
607195 60158 CVE-2013-0211 FREEBSD:FreeBSD-SA-16:23  View
607196 60158 CVE-2013-0211 URL:https://www.freebsd.org/security/advisories/FreeBSD-SA-16:23.libarchive.asc  View
607197 60158 CVE-2013-0211 MANDRIVA:MDVSA-2013:147  View
607198 60158 CVE-2013-0211 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2013:147  View
607199 60158 CVE-2013-0211 SUSE:openSUSE-SU-2015:0568  View
607200 60158 CVE-2013-0211 URL:http://lists.opensuse.org/opensuse-updates/2015-03/msg00065.html  View
607201 60158 CVE-2013-0211 UBUNTU:USN-2549-1  View
607202 60158 CVE-2013-0211 URL:http://www.ubuntu.com/usn/USN-2549-1  View
607203 60158 CVE-2013-0211 BID:58926  View
607204 60158 CVE-2013-0211 URL:http://www.securityfocus.com/bid/58926  View
607205 60158 CVE-2013-0211 SECTRACK:1035995  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
20022 JVNDB-2013-001597 Linux Kernel の Xen netback 機能におけるサービス運用妨害 (ループ) の脆弱性 Linux Kernel の Xen netback 機能には、サービス運用妨害 (ループ) 状態となる脆弱性が存在します。 CVE-2013-0216 60158 5.2 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001597.html  View