Integer signedness error in the archivewritezipdata function in archivewritesetformat_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers to cause a denial of service (crash) via unspecified vectors, which triggers an improper conversion between unsigned and signed types, leading to a buffer overflow.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "bsdcpio", "binary_version": "3.1.2-7ubuntu2" }, { "binary_name": "bsdtar", "binary_version": "3.1.2-7ubuntu2" }, { "binary_name": "libarchive-dev", "binary_version": "3.1.2-7ubuntu2" }, { "binary_name": "libarchive13", "binary_version": "3.1.2-7ubuntu2" } ] }