Denial of Service Vulnerability in libarchive's compress_bidder_init Function

Denial of Service Vulnerability in libarchive's compress_bidder_init Function

CVE-2015-8932 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which triggers an invalid left shift.

Learn more about our Web Application Penetration Testing UK.