suse · CVE-2016-5844

Quick triage

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-5844 severity moderate: SUSE including 275 source package names (amazon/suse-sles-15-sp1-chost-byos-v20210304-hvm-ssd-x86_64, amazon/suse-sles-15-sp1-chost-byos-v20220127-hvm-ssd-x86_64, …), 305 product×package rows across 55 product lines (SUSE Liberty Linux 7, SUSE Linux Enterprise Desktop 12 SP1, … (55 product lines)): Known Affected 231, Fixed 64, Known Not Affected 10.

Description:

Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file.