ГлавнаяУязвимости → CVE-2024-26256
7.8высокая

CVE-2024-26256

→ есть в БДУ: BDU:2024-02924 (на русском)
Описание (на английском; русское — в БДУ выше)

Libarchive Remote Code Execution Vulnerability

Затрагиваемое ПО
Libarchive LibarchiveFedoraproject FedoraMicrosoft Windows 11 22h2Microsoft Windows 11 23h2Microsoft Windows server 2022 23h2
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26256http://www.openwall.com/lists/oss-security/2024/06/04/2http://www.openwall.com/lists/oss-security/2024/06/05/1https://github.com/LeSuisse/nixpkgs/commit/81b82a2934521dffef76f7ca305d8d4e22fe7262https://github.com/libarchive/libarchive/commit/eb7939b24a681a04648a59cdebd386b1e9dc9237.patchhttps://github.com/libarchive/libarchive/releases/tag/v3.7.4https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EWANFZ6NEMXFCALXWI2AFKYBOLONAVFC/https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TWAMR5TY47UKVYMWQXB34CWSBNTRYMBV/