Out-of-Bounds Read Vulnerability in libarchive's process_add_entry Function

CVE-2015-8928 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.

Learn more about our Web Application Penetration Testing UK.