{ "threat_severity" : "Important", "public_date" : "2025-05-20T00:00:00Z", "bugzilla" : { "description" : "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c", "id" : "2370861", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2370861" }, "cvss3" : { "cvss3_base_score" : "7.8", "cvss3_scoring_vector" : "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "status" : "verified" }, "cwe" : "CWE-190", "details" : [ "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.", "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition." ], "statement" : "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive's RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 10", "release_date" : "2025-08-20T00:00:00Z", "advisory" : "RHSA-2025:14137", "cpe" : "cpe:/o:redhat:enterprise_linux:10.0", "package" : "libarchive-0:3.7.7-4.el10_0" }, { "product_name" : "Red Hat Enterprise Linux 7 Extended Lifecycle Support", "release_date" : "2025-08-28T00:00:00Z", "advisory" : "RHSA-2025:14828", "cpe" : "cpe:/o:redhat:rhel_els:7", "package" : "libarchive-0:3.1.2-14.el7_9.1" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2025-08-20T00:00:00Z", "advisory" : "RHSA-2025:14135", "cpe" : "cpe:/o:redhat:enterprise_linux:8", "package" : "libarchive-0:3.3.3-6.el8_10" }, { "product_name" : "Red Hat Enterprise Linux 8.2 Advanced Update Support", "release_date" : "2025-08-25T00:00:00Z", "advisory" : "RHSA-2025:14528", "cpe" : "cpe:/o:redhat:rhel_aus:8.2", "package" : "libarchive-0:3.3.2-8.el8_2.1" }, { "product_name" : "Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support", "release_date" : "2025-08-28T00:00:00Z", "advisory" : "RHSA-2025:14810", "cpe" : "cpe:/o:redhat:rhel_aus:8.4", "package" : "libarchive-0:3.3.3-1.el8_4.1" }, { "product_name" : "Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On", "release_date" : "2025-08-28T00:00:00Z", "advisory" : "RHSA-2025:14810", "cpe" : "cpe:/o:redhat:rhel_eus_long_life:8.4", "package" : "libarchive-0:3.3.3-1.el8_4.1" }, { "product_name" : "Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support", "release_date" : "2025-08-28T00:00:00Z", "advisory" : "RHSA-2025:14808", "cpe" : "cpe:/o:redhat:rhel_aus:8.6", "package" : "libarchive-0:3.3.3-6.el8_6" }, { "product_name" : "Red Hat Enterprise Linux 8.6 Telecommunications Update Service", "release_date" : "2025-08-28T00:00:00Z", "advisory" : "RHSA-2025:14808", "cpe" : "cpe:/o:redhat:rhel_tus:8.6", "package" : "libarchive-0:3.3.3-6.el8_6" }, { "product_name" : "Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions", "release_date" : "2025-08-28T00:00:00Z", "advisory" : "RHSA-2025:14808", "cpe" : "cpe:/o:redhat:rhel_e4s:8.6", "package" : "libarchive-0:3.3.3-6.el8_6" }, { "product_name" : "Red Hat Enterprise Linux 8.8 Telecommunications Update Service", "release_date" : "2025-08-25T00:00:00Z", "advisory" : "RHSA-2025:14525", "cpe" : "cpe:/o:redhat:rhel_tus:8.8", "package" : "libarchive-0:3.3.3-5.el8_8.1" }, { "product_name" : "Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions", "release_date" : "2025-08-25T00:00:00Z", "advisory" : "RHSA-2025:14525", "cpe" : "cpe:/o:redhat:rhel_e4s:8.8", "package" : "libarchive-0:3.3.3-5.el8_8.1" }, { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2025-08-20T00:00:00Z", "advisory" : "RHSA-2025:14130", "cpe" : "cpe:/a:redhat:enterprise_linux:9", "package" : "libarchive-0:3.5.3-6.el9_6" }, { "product_name" : "Red Hat Enterprise Linux 9", "release_date" : "2025-08-20T00:00:00Z", "advisory" : "RHSA-2025:14130", "cpe" : "cpe:/o:redhat:enterprise_linux:9", "package" : "libarchive-0:3.5.3-6.el9_6" }, { "product_name" : "Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions", "release_date" : "2025-08-20T00:00:00Z", "advisory" : "RHSA-2025:14141", "cpe" : "cpe:/a:redhat:rhel_e4s:9.0", "package" : "libarchive-0:3.5.3-2.el9_0.1" }, { "product_name" : "Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions", "release_date" : "2025-09-02T00:00:00Z", "advisory" : "RHSA-2025:15024", "cpe" : "cpe:/a:redhat:rhel_e4s:9.2", "package" : "libarchive-0:3.5.3-5.el9_2" }, { "product_name" : "Red Hat Enterprise Linux 9.4 Extended Update Support", "release_date" : "2025-08-20T00:00:00Z", "advisory" : "RHSA-2025:14142", "cpe" : "cpe:/a:redhat:rhel_eus:9.4", "package" : "libarchive-0:3.5.3-4.el9_4.1" }, { "product_name" : "Red Hat OpenShift Container Platform 4.14", "release_date" : "2025-10-30T00:00:00Z", "advisory" : "RHSA-2025:19041", "cpe" : "cpe:/a:redhat:openshift:4.14::el9", "package" : "rhcos-414.92.202510211419-0" }, { "product_name" : "Red Hat OpenShift Container Platform 4.15", "release_date" : "2026-02-05T00:00:00Z", "advisory" : "RHSA-2026:1541", "cpe" : "cpe:/a:redhat:openshift:4.15::el9", "package" : "rhcos-415.92.202601271320-0" }, { "product_name" : "Red Hat OpenShift Container Platform 4.16", "release_date" : "2026-01-15T00:00:00Z", "advisory" : "RHSA-2026:0326", "cpe" : "cpe:/a:redhat:openshift:4.16::el9", "package" : "rhcos-416.94.202601071926-0" }, { "product_name" : "Red Hat OpenShift Container Platform 4.17", "release_date" : "2025-10-22T00:00:00Z", "advisory" : "RHSA-2025:18218", "cpe" : "cpe:/a:redhat:openshift:4.17::el9", "package" : "rhcos-417.94.202510112152-0" }, { "product_name" : "Red Hat OpenShift Container Platform 4.18", "release_date" : "2025-10-29T00:00:00Z", "advisory" : "RHSA-2025:19046", "cpe" : "cpe:/a:redhat:openshift:4.18::el9", "package" : "rhcos-418.94.202510230424-0" }, { "product_name" : "Red Hat OpenShift Container Platform 4.19", "release_date" : "2025-10-22T00:00:00Z", "advisory" : "RHSA-2025:18217", "cpe" : "cpe:/a:redhat:openshift:4.19::el9", "package" : "rhcos-4.19.9.6.202510140714-0" }, { "product_name" : "Red Hat OpenShift Container Platform 4.20", "release_date" : "2025-10-21T00:00:00Z", "advisory" : "RHSA-2025:15397", "cpe" : "cpe:/a:redhat:openshift:4.20::el9", "package" : "rhcos-4.20.9.6.202509251656-0" }, { "product_name" : "Red Hat Web Terminal 1.11 on RHEL 9", "release_date" : "2025-09-15T00:00:00Z", "advisory" : "RHSA-2025:15828", "cpe" : "cpe:/a:redhat:webterminal:1.11::el9", "package" : "web-terminal/web-terminal-rhel9-operator:1.11-19" }, { "product_name" : "Red Hat Web Terminal 1.11 on RHEL 9", "release_date" : "2025-09-15T00:00:00Z", "advisory" : "RHSA-2025:15828", "cpe" : "cpe:/a:redhat:webterminal:1.11::el9", "package" : "web-terminal/web-terminal-tooling-rhel9:1.11-8" }, { "product_name" : "Red Hat Web Terminal 1.12 on RHEL 9", "release_date" : "2025-09-15T00:00:00Z", "advisory" : "RHSA-2025:15827", "cpe" : "cpe:/a:redhat:webterminal:1.12::el9", "package" : "web-terminal/web-terminal-tooling-rhel9:1.12-4" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-data-index-ephemeral-rhel8:1.36.0-11" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-data-index-postgresql-rhel8:1.36.0-11" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-db-migrator-tool-rhel8:1.36.0-11" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-jobs-service-ephemeral-rhel8:1.36.0-10" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-jobs-service-postgresql-rhel8:1.36.0-10" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8:1.36.0-4" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-management-console-rhel8:1.36.0-9" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-operator-bundle:1.36.0-12" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-rhel8-operator:1.36.0-18" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-swf-builder-rhel8:1.36.0-11" }, { "product_name" : "RHOSS-1.36-RHEL-8", "release_date" : "2026-01-22T00:00:00Z", "advisory" : "RHSA-2026:0934", "cpe" : "cpe:/a:redhat:openshift_serverless:1.36::el8", "package" : "openshift-serverless-1/logic-swf-devmode-rhel8:1.36.0-7" }, { "product_name" : "cert-manager operator for Red Hat OpenShift 1.16", "release_date" : "2025-10-16T00:00:00Z", "advisory" : "RHSA-2025:18219", "cpe" : "cpe:/a:redhat:cert_manager:1.16::el9", "package" : "cert-manager/jetstack-cert-manager-rhel9:sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b" }, { "product_name" : "Compliance Operator 1", "release_date" : "2025-11-20T00:00:00Z", "advisory" : "RHSA-2025:21885", "cpe" : "cpe:/a:redhat:openshift_compliance_operator:1::el9", "package" : "compliance/openshift-compliance-must-gather-rhel8:sha256:4953a7ea865ff38a4fe19d5536d8062870c262733c640a2c7e4bd9e0bfb3d498" }, { "product_name" : "Compliance Operator 1", "release_date" : "2025-11-20T00:00:00Z", "advisory" : "RHSA-2025:21885", "cpe" : "cpe:/a:redhat:openshift_compliance_operator:1::el9", "package" : "compliance/openshift-compliance-openscap-rhel8:sha256:06ad8599c4b0170264e40a45b0126504c87c37f0832265c7ff6541d2385b2049" }, { "product_name" : "Compliance Operator 1", "release_date" : "2025-11-20T00:00:00Z", "advisory" : "RHSA-2025:21885", "cpe" : "cpe:/a:redhat:openshift_compliance_operator:1::el9", "package" : "compliance/openshift-compliance-rhel8-operator:sha256:0903a7a5c857d96c84fd022e5785514eff201047e2fdd5d6699d79f17440ef02" }, { "product_name" : "File Integrity Operator 1", "release_date" : "2025-11-21T00:00:00Z", "advisory" : "RHSA-2025:21913", "cpe" : "cpe:/a:redhat:openshift_file_integrity_operator:1::el9", "package" : "compliance/openshift-file-integrity-rhel8-operator:sha256:364d11af112a5b1d3f28c9ea8b7aac678e111b9c7fca0516d61036904f318605" }, { "product_name" : "Red Hat Discovery 2", "release_date" : "2025-09-23T00:00:00Z", "advisory" : "RHSA-2025:16524", "cpe" : "cpe:/a:redhat:discovery:2::el9", "package" : "discovery/discovery-server-rhel9:sha256:1c67d8d526ab4f2854947f7dccd8752a2efd414c0f1cbab17706fa91147e7cda" }, { "product_name" : "Red Hat Insights proxy 1.5", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14644", "cpe" : "cpe:/a:redhat:insights_proxy:1.5::el9", "package" : "insights-proxy/insights-proxy-container-rhel9:sha256:3fa6c89778502bfb0b16ef8ff3c576467e8a21269afb2380c4ae176ee2fc7fec" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-agent-rhel8:sha256:5604dbb58d5e31f399f41ae4bf7a766272bf091a4e1bd6e89d1b85d62b0db93a" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-all-in-one-rhel8:sha256:03b0aced2885356099971c8470add4b0f7732bcb380c74be3691d30c2894e5c0" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-collector-rhel8:sha256:86d400b195958c287846ae60d76d2ec277740da3d3de033c7e72ab9a42370b4b" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-es-index-cleaner-rhel8:sha256:1413caf075bae338e12199fc8a6f53c13b491c81e3ad36251a09bceee554955d" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-es-rollover-rhel8:sha256:6ceeba5ce034140d4144ead58de768d8f374aa3f1c4800855871c229ee1cd785" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-ingester-rhel8:sha256:044c58b2f2d18d5a20fd23dafc2db1ee6d6d48ac5c20706f176b8132d1d8ac96" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-operator-bundle:sha256:f250e39033d7cb1d786e5a7ec6798c25d4c5d8c6ecbcf6828915605fc4658da5" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-query-rhel8:sha256:35a048b43d21f9f05df76fc7cb5766eb1f708be1c0012f117fdc09851b8047e1" }, { "product_name" : "Red Hat OpenShift distributed tracing 3.5.1", "release_date" : "2025-08-26T00:00:00Z", "advisory" : "RHSA-2025:14594", "cpe" : "cpe:/a:redhat:openshift_distributed_tracing:3.5::el8", "package" : "rhosdt/jaeger-rhel8-operator:sha256:9b66a46b3a28084c45823268d1fa4ae953c50b996f3d265c5fc9f4bc3eb326b4" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-cloud-api-adaptor-rhel9:sha256:24722900db1425bf0c27f6ad6f3fb7d79ff9ebc433bdab58423fa71bab76122b" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-cloud-api-adaptor-webhook-rhel9:sha256:7b7c0b42ff8814d9d0cfa1b0ec9e58aebe79bc5cfbc658384f026d8493ae6fbe" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-monitor-rhel9:sha256:9ff002e628e5646b5ab3cc9201087847bea29569b4a1bc135b89d5c1a5f0a422" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-must-gather-rhel9:sha256:6b2da66d287083cf823f6efd8d61ba6a1be10eb6ba8cda484dea4e2ab67ae108" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-podvm-builder-rhel9:sha256:8f29671308ca658e32e97d5c3b482f7541aae1bca1b71f39b3276a9a334d8108" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-podvm-payload-rhel9:sha256:59fb1f7f1653361d94f7d48b42d8fe19ed3263c1c78654837c11f2135544c1ac" }, { "product_name" : "Red Hat OpenShift sandboxed containers 1.1", "release_date" : "2025-09-11T00:00:00Z", "advisory" : "RHSA-2025:15709", "cpe" : "cpe:/a:redhat:confidential_compute_attestation:1.10::el9", "package" : "openshift-sandboxed-containers/osc-rhel9-operator:sha256:616297cf428a55918fad3653d7aca18fe3c1f622ff63ab9885991bd6dbc6ed65" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Out of support scope", "package_name" : "libarchive", "cpe" : "cpe:/o:redhat:enterprise_linux:6" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2025-5914\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-5914\nhttps://github.com/libarchive/libarchive/pull/2598\nhttps://github.com/libarchive/libarchive/releases/tag/v3.8.0" ], "name" : "CVE-2025-5914", "csaw" : false }