GCVE - cpe:2.3:a:freebsd:libarchive:2.8.4:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:freebsd:libarchive:2.8.4:*:*:*:*:*:*:*

part: a version: 2.8.4 update: *

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Libarchive (`550c1955-0cda-51bf-b7bb-6ca7ad67170a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/libarchive`	purl2cpe	2026-06-01 10:12:45.474554
`pkg:deb/ubuntu/libarchive`	purl2cpe	2026-06-01 10:12:45.474556
`pkg:github/libarchive/libarchive`	purl2cpe	2026-06-01 10:12:45.474557
`pkg:gitlab/redhat/libarchive`	purl2cpe	2026-06-01 10:12:45.474558
`pkg:rpm/centos/libarchive`	purl2cpe	2026-06-01 10:12:45.474560
`pkg:rpm/fedora/libarchive`	purl2cpe	2026-06-01 10:12:45.474561
`pkg:rpm/opensuse/libarchive`	purl2cpe	2026-06-01 10:12:45.474562

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2011-1779`	vulnerable	2026-06-03 14:31:03.967583	Details available Multiple use-after-free vulnerabilities in libarchive 2.8.4 and 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted (1) TAR archive or (2) ISO9660 image. Published: 2012-04-13T20:00:00.000Z Updated: 2024-08-06T22:37:25.815Z Open on db.gcve.eu Reference links http://code.google.com/p/libarchive/source/detail?r=3038 https://bugzilla.redhat.com/show_bug.cgi?id=705849	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1778`	vulnerable	2026-06-03 14:31:03.967311	Details available Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TAR archive. Published: 2012-04-13T20:00:00.000Z Updated: 2024-08-06T22:37:25.831Z Open on db.gcve.eu Reference links http://secunia.com/advisories/48034 https://rhn.redhat.com/errata/RHSA-2011-1507.html https://bugzilla.redhat.com/show_bug.cgi?id=705849 http://code.google.com/p/libarchive/source/detail?r=3160 http://www.debian.org/security/2012/dsa-2413	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1777`	vulnerable	2026-06-03 14:31:03.966508	Details available Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ISO9660 image. Published: 2012-04-13T20:00:00.000Z Updated: 2024-08-06T22:37:25.781Z Open on db.gcve.eu Reference links http://secunia.com/advisories/48034 https://rhn.redhat.com/errata/RHSA-2011-1507.html https://bugzilla.redhat.com/show_bug.cgi?id=705849 http://code.google.com/p/libarchive/source/detail?r=3158 http://www.debian.org/security/2012/dsa-2413	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.