CVE-2024-37407

Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
mitreCNA
---
---
CISA-ADPADP
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
VendorProductVersion
libarchivelibarchive
3.7.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libarchive
bullseye
3.4.3-2+deb11u1
fixed
bullseye (security)
3.4.3-2+deb11u2
fixed
bookworm
3.6.2-1+deb12u2
fixed
bookworm (security)
3.6.2-1+deb12u2
fixed
sid
3.7.4-3
fixed
trixie
3.7.4-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libarchive
noble
not-affected
mantic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
Common Weakness Enumeration
References
https://github.com/libarchive/libarchive/commit/b6a979481b7d77c12fa17bbed94576b63bbcb0c0
https://github.com/libarchive/libarchive/pull/2145
https://github.com/libarchive/libarchive/releases/tag/v3.7.4
https://github.com/libarchive/libarchive/commit/b6a979481b7d77c12fa17bbed94576b63bbcb0c0
https://github.com/libarchive/libarchive/pull/2145
https://github.com/libarchive/libarchive/releases/tag/v3.7.4