FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-25 11:22:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
7a2e0063-0e4e-11e8-94c0-5453ed2e2b49	p7zip-codec-rar -- insufficient error handling MITRE reports: Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, alows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive. Discovery 2018-01-23 Entry 2018-02-10 p7zip-codec-rar < 16.02_1 CVE-2018-5996 https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5996 https://nvd.nist.gov/vuln/detail/CVE-2018-5996

VuXML ID

Description

7a2e0063-0e4e-11e8-94c0-5453ed2e2b49

p7zip-codec-rar -- insufficient error handling

MITRE reports:

Insufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, alows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.

Discovery 2018-01-23
Entry 2018-02-10
p7zip-codec-rar

< 16.02_1

CVE-2018-5996
https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5996
https://nvd.nist.gov/vuln/detail/CVE-2018-5996