Homepage

libarchive vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the libarchive package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2025-25724

*
  • L
NULL Pointer Dereference

*
  • H
CVE-2024-20696

<3.4.3-2+deb11u2
  • L
Race Condition

*
  • C
NULL Pointer Dereference

<3.4.3-2+deb11u2
  • M
Out-of-bounds Read

<3.4.3-2+deb11u2
  • H
Link Following

<3.4.3-2+deb11u1
  • H
Link Following

<3.4.3-2+deb11u1
  • M
Use After Free

<3.4.3-2+deb11u2
  • H
Improper Input Validation

<3.4.0-2
  • M
Out-of-bounds Read

<3.4.2-1
  • H
Use After Free

<3.4.0-1
  • L
Out-of-bounds Read

<3.3.3-4
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<3.3.3-4
  • H
Double Free

<3.3.3-2
  • M
NULL Pointer Dereference

<3.3.3-2
  • M
Out-of-Bounds

<3.3.3-2
  • H
Use After Free

<3.3.3-2
  • M
Out-of-bounds Read

<3.2.2-4.1
  • H
Out-of-bounds Read

<3.2.2-4.1
  • M
Out-of-bounds Read

<3.2.2-4.2
  • M
Out-of-bounds Read

<3.2.2-3.1
  • M
Out-of-Bounds

<3.2.2-3.1
  • M
Out-of-Bounds

<3.2.2-3.1
  • L
NULL Pointer Dereference

<3.2.2-3.1
  • M
Out-of-bounds Read

<3.2.1-5
  • H
Out-of-Bounds

<3.2.1-5
  • H
Out-of-bounds Read

<3.2.1-5
  • H
Out-of-bounds Read

<3.2.1-6
  • L
Integer Overflow or Wraparound

<3.2.1-1
  • H
Out-of-Bounds

<3.2.1-1
  • H
Improper Input Validation

<3.2.1-1
  • M
Integer Overflow or Wraparound

<3.2.1-1
  • H
Improper Input Validation

<3.2.1-4
  • H
Out-of-Bounds

<3.2.1-1
  • H
Integer Overflow or Wraparound

<3.2.1-1
  • M
Resource Management Errors

<3.2.0-2
  • M
NULL Pointer Dereference

<3.2.0-2
  • M
NULL Pointer Dereference

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • M
Integer Overflow or Wraparound

<3.2.0-2
  • H
NULL Pointer Dereference

<3.2.0-2
  • M
NULL Pointer Dereference

<3.2.0-2
  • L
Out-of-bounds Read

<3.2.0-2
  • M
Improper Input Validation

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.1-1
  • M
Out-of-bounds Read

<3.2.0-2
  • H
Integer Overflow or Wraparound

<3.2.0-2
  • M
Out-of-Bounds

<3.2.0-2
  • H
Out-of-bounds Read

<3.2.0-2
  • H
Out-of-Bounds

<3.2.0-2
  • H
Improper Input Validation

<3.2.0-2
  • M
Out-of-bounds Read

<3.2.0-2
  • M
Improper Input Validation

<3.2.0-2
  • H
Improper Input Validation

<3.1.2-11.1
  • M
Directory Traversal

<3.1.2-11
  • M
Numeric Errors

<3.0.4-3
  • H
Out-of-Bounds

<3.0.4-2
  • M
Out-of-Bounds

<2.8.5-5
  • H
Resource Management Errors

<3.0.4-2
  • M
Out-of-Bounds

<2.8.5-5
  • L
CVE-2007-3645

<2.2.4-1
  • L
CVE-2007-3644

<2.2.4-1
  • L
CVE-2007-3641

<2.2.4-1
  • L
CVE-2006-5680

<1.3.1-1