Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a large header size value for the (1) level0 or (2) level1 header in a lha archive, which triggers a buffer overflow.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2016/01/18/3 | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2016/01/18/8 | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202007-42 |
Configurations
History
No history.
Information
Published : 2017-01-23 21:59
Updated : 2024-02-28 15:44
NVD link : CVE-2016-1925
Mitre link : CVE-2016-1925
CVE.ORG link : CVE-2016-1925
JSON object : View
Products Affected
lha_for_unix_project
- lha_for_unix
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)