CVE-2025-60753

Medium CVSS: 5.5

An issue was discovered in libarchive bsdtar before version 3.8.1 in function apply_substitution in file tar/subst.c when processing crafted -s substitution rules. This can cause unbounded memory allocation and lead to denial of service (Out-of-Memory crash).

Vendor

Libarchive

Product

Libarchive

CWE

CWE-400

Yayın Tarihi

2025-11-05 16:15:40

Güncelleme

2026-02-04 21:19:45

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-400 Libarchive MEDIUM Libarchive 2025

Referanslar

https://github.com/Papya-j/CVE/tree/main/CVE-2025-60753 https://github.com/libarchive/libarchive/issues/2725

Benzer Kayıtlar

Low

CVE-2025-5916

A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be trigge…

Low

CVE-2025-5917

A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when ha…

Low

CVE-2025-5918

A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped in…

High

CVE-2025-5914

A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data…

Medium

CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the…

High

CVE-2024-48615

Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function header_pa…