1
Candidate: CVE-2016-10349
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10349
6
The archive_le32dec function in archive_endian.h in libarchive 3.2.2 allows
7
remote attackers to cause a denial of service (heap-based buffer over-read
8
and application crash) via a crafted file.
12
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=861609
13
https://github.com/libarchive/libarchive/issues/834
19
upstream: https://github.com/libarchive/libarchive/commit/88eb9e1d73fef46f04677c25b1697b8e25777ed3
20
upstream_libarchive: released (3.2.2-3.1)
21
precise_libarchive: ignored (reached end-of-life)
22
precise/esm_libarchive: DNE (precise was needed)
23
trusty_libarchive: needed
24
vivid/stable-phone-overlay_libarchive: DNE
25
vivid/ubuntu-core_libarchive: DNE
26
xenial_libarchive: needed
27
yakkety_libarchive: ignored (reached end-of-life)
28
zesty_libarchive: ignored (reached end-of-life)
29
artful_libarchive: not-affected (3.2.2-3.1)
30
bionic_libarchive: not-affected (3.2.2-3.1)
31
devel_libarchive: not-affected (3.2.2-3.1)