CVE-2019-17582 Information

Description

A use-after-free in the _zip_dirent_read function of zip_dirent.c in libzip 1.2.0 allows attackers to have an unspecified impact by attempting to unzip a malformed ZIP archive. NOTE: the discoverer states \This use-after-free is triggered prior to the double free reported in CVE-2017-12858.\

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://github.com/nih-at/libzip/commit/2217022b7d1142738656d891e00b3d2d9179b796 https://libzip.org/libzip-discuss/ https://github.com/nih-at/libzip/issues/5

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8