CVE-2016-5418

Published September 21st, 2016

View on NVD ↗

CVSS v3

N/A

CVSS v2

MEDIUM

Affected

PROJECT

Description

The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file.

libarchive/libarchive

Multi-format archive and compression library

GitHub

3.52K