Homepage

libarchive vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the libarchive package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2025-25724

*
  • L
Improper Resource Shutdown or Release

*
  • H
CVE-2024-20696

<3.6.2-1+deb12u2
  • H
Out-of-bounds Read

<3.6.2-1+deb12u1
  • H
Out-of-bounds Read

<3.6.2-1+deb12u1
  • H
Out-of-bounds Write

<3.6.2-1+deb12u1
  • L
Race Condition

*
  • C
NULL Pointer Dereference

<3.6.2-1
  • M
Out-of-bounds Read

<3.6.2-1
  • H
Link Following

<3.5.2-1
  • H
Link Following

<3.5.2-1
  • M
Use After Free

<3.6.0-1
  • H
Improper Input Validation

<3.4.0-2
  • M
Out-of-bounds Read

<3.4.2-1
  • H
Use After Free

<3.4.0-1
  • L
Out-of-bounds Read

<3.3.3-4
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<3.3.3-4
  • H
Use After Free

<3.3.3-2
  • M
Out-of-Bounds

<3.3.3-2
  • H
Double Free

<3.3.3-2
  • M
NULL Pointer Dereference

<3.3.3-2
  • H
Out-of-bounds Read

<3.2.2-4.1
  • M
Out-of-bounds Read

<3.2.2-4.2
  • M
Out-of-bounds Read

<3.2.2-4.1
  • M
Out-of-bounds Read

<3.2.2-3.1
  • M
Out-of-Bounds

<3.2.2-3.1
  • M
Out-of-Bounds

<3.2.2-3.1
  • L
NULL Pointer Dereference

<3.2.2-3.1
  • H
Out-of-Bounds

<3.2.1-5
  • H
Out-of-bounds Read

<3.2.1-5
  • M
Out-of-bounds Read

<3.2.1-5
  • H
Out-of-bounds Read

<3.2.1-6
  • M
Resource Management Errors

<3.2.0-2
  • H
Improper Input Validation

<3.2.1-4
  • H
Out-of-Bounds

<3.2.1-1
  • H
Integer Overflow or Wraparound

<3.2.1-1
  • H
Improper Input Validation

<3.2.1-1
  • L
Integer Overflow or Wraparound

<3.2.1-1
  • H
Out-of-Bounds

<3.2.1-1
  • M
Integer Overflow or Wraparound

<3.2.1-1
  • M
NULL Pointer Dereference

<3.2.0-2
  • M
Integer Overflow or Wraparound

<3.2.0-2
  • H
Integer Overflow or Wraparound

<3.2.0-2
  • L
Out-of-bounds Read

<3.2.0-2
  • M
NULL Pointer Dereference

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • H
Improper Input Validation

<3.2.0-2
  • H
Out-of-Bounds

<3.2.0-2
  • H
NULL Pointer Dereference

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • H
Out-of-bounds Read

<3.2.0-2
  • M
NULL Pointer Dereference

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.1-1
  • M
Improper Input Validation

<3.2.0-2
  • M
Out-of-Bounds

<3.2.0-2
  • M
Improper Input Validation

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • H
Improper Input Validation

<3.1.2-11.1
  • M
Directory Traversal

<3.1.2-11
  • M
Numeric Errors

<3.0.4-3
  • H
Out-of-Bounds

<3.0.4-2
  • M
Out-of-Bounds

<2.8.5-5
  • H
Resource Management Errors

<3.0.4-2
  • M
Out-of-Bounds

<2.8.5-5
  • L
CVE-2007-3645

<2.2.4-1
  • L
CVE-2007-3644

<2.2.4-1
  • L
CVE-2007-3641

<2.2.4-1
  • L
CVE-2006-5680

<1.3.1-1