AZL-59377

See a problem?
Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-59377.json
JSON Data
https://api.osv.dev/v1/vulns/AZL-59377
Upstream
Published
2025-03-28T15:15:45Z
Modified
2026-04-21T04:37:16.375096Z
Summary
CVE-2024-48615 affecting package libarchive for versions less than 3.6.1-6
Details

Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function headerpaxextension at rchivereadsupportformattar.c:1844:8.

References

Affected packages

Azure Linux:2 / libarchive

Package

Name
libarchive
Purl
pkg:rpm/azure-linux/libarchive

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.6.1-6

Database specific

source 
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-59377.json"