Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2025-5917

2.8 LOW

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 6 months, 1 week ago

Libarchive: off by one error in build_ustar_entry_name() at archive_write_set_format_pax.c

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictable program behavior, crashes, or in specific circumstances, could be leveraged as a building block for more sophisticated exploitation.

References

RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0
https://access.redhat.com/security/cve/CVE-2025-5917 x_refsource_REDHAT vdb-entry
RHBZ#2370874 issue-tracking x_refsource_REDHAT
https://github.com/libarchive/libarchive/pull/2588
https://github.com/libarchive/libarchive/releases/tag/v3.8.0

Affected products

rhcos

libarchive

<3.8.0

Matching in nixpkgs

pkgs.libarchive

Multi-format archive and compression library

nixos-unstable -
- nixpkgs-unstable 3.8.1

pkgs.libarchive-qt

Qt based archiving solution with libarchive backend

nixos-unstable -
- nixpkgs-unstable 2.0.8

pkgs.haskellPackages.libarchive

Haskell interface to libarchive

nixos-unstable -
- nixpkgs-unstable 3.0.4.2

pkgs.kodiPackages.vfs-libarchive

LibArchive Virtual Filesystem add-on for Kodi

nixos-unstable -
- nixpkgs-unstable 20.1.0

pkgs.python312Packages.libarchive-c

Python interface to libarchive

nixos-unstable -
- nixpkgs-unstable 5.3

pkgs.python313Packages.libarchive-c

Python interface to libarchive

nixos-unstable -
- nixpkgs-unstable 5.3

pkgs.haskellPackages.archive-libarchive

Common interface using libarchive

nixos-unstable -
- nixpkgs-unstable 1.0.0.1

pkgs.haskellPackages.libarchive-conduit

Read many archive formats with libarchive and conduit

nixos-unstable -
- nixpkgs-unstable 0.1.0.0

pkgs.python312Packages.extractcode-libarchive

ScanCode Toolkit plugin to provide pre-built binary libraries and utilities and their locations

nixos-unstable -
- nixpkgs-unstable 21.5.31

pkgs.python313Packages.extractcode-libarchive

ScanCode Toolkit plugin to provide pre-built binary libraries and utilities and their locations

nixos-unstable -
- nixpkgs-unstable 21.5.31

Package maintainers

@peterhoeg Peter Hoeg <peter@hoeg.com>
@dschrempf Dominik Schrempf <dominik.schrempf@gmail.com>
@minijackson Rémi Nicole <minijackson@riseup.net>
@cpages Carles Pagès <page@ruiec.cat>
@aanderse Aaron Andersen <aaron@fosslib.net>
@edwtjo Edward Tjörnhammar <ed@cflags.cc>
@nvmd Sergey Kazenyuk <kazenyuk@pm.me>
@jcumming Jack Cummings <jack@mudshark.org>