CVE-2025-5914 | THREATINT

Description

A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.

PUBLISHED Reserved 2025-06-09 | Published 2025-06-09 | Updated 2026-06-02 | Assigner redhat

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Problem types

Integer Overflow or Wraparound

Product status

Default status

unaffected

Any version before 3.8.0

affected

Default status

affected

0:3.7.7-4.el10_0 (rpm) before *

unaffected

Default status

affected

0:3.1.2-14.el7_9.1 (rpm) before *

unaffected

Default status

affected

0:3.3.3-6.el8_10 (rpm) before *

unaffected

Default status

affected

0:3.3.2-8.el8_2.1 (rpm) before *

unaffected

Default status

affected

0:3.3.3-1.el8_4.1 (rpm) before *

unaffected

Default status

affected

0:3.3.3-1.el8_4.1 (rpm) before *

unaffected

Default status

affected

0:3.3.3-6.el8_6 (rpm) before *

unaffected

Default status

affected

0:3.3.3-6.el8_6 (rpm) before *

unaffected

Default status

affected

0:3.3.3-6.el8_6 (rpm) before *

unaffected

Default status

affected

0:3.3.3-5.el8_8.1 (rpm) before *

unaffected

Default status

affected

0:3.3.3-5.el8_8.1 (rpm) before *

unaffected

Default status

affected

0:3.5.3-6.el9_6 (rpm) before *

unaffected

Default status

affected

0:3.5.3-6.el9_6 (rpm) before *

unaffected

Default status

affected

0:3.5.3-2.el9_0.1 (rpm) before *

unaffected

Default status

affected

0:3.5.3-5.el9_2 (rpm) before *

unaffected

Default status

affected

0:3.5.3-4.el9_4.1 (rpm) before *

unaffected

Default status

affected

414.92.202510211419-0 (rpm) before *

unaffected

Default status

affected

415.92.202601271320-0 (rpm) before *

unaffected

Default status

affected

416.94.202601071926-0 (rpm) before *

unaffected

Default status

affected

417.94.202510112152-0 (rpm) before *

unaffected

Default status

affected

418.94.202510230424-0 (rpm) before *

unaffected

Default status

affected

4.19.9.6.202510140714-0 (rpm) before *

unaffected

Default status

affected

4.20.9.6.202509251656-0 (rpm) before *

unaffected

Default status

affected

1.11-19 (rpm) before *

unaffected

Default status

affected

1.11-8 (rpm) before *

unaffected

Default status

affected

1.12-4 (rpm) before *

unaffected

Default status

affected

1.36.0-11 (rpm) before *

unaffected

Default status

affected

1.36.0-11 (rpm) before *

unaffected

Default status

affected

1.36.0-11 (rpm) before *

unaffected

Default status

affected

1.36.0-10 (rpm) before *

unaffected

Default status

affected

1.36.0-10 (rpm) before *

unaffected

Default status

affected

1.36.0-4 (rpm) before *

unaffected

Default status

affected

1.36.0-9 (rpm) before *

unaffected

Default status

affected

1.36.0-12 (rpm) before *

unaffected

Default status

affected

1.36.0-18 (rpm) before *

unaffected

Default status

affected

1.36.0-11 (rpm) before *

unaffected

Default status

affected

1.36.0-7 (rpm) before *

unaffected

Default status

affected

v1.16.5-1760515757 (rpm) before *

unaffected

Default status

affected

v1.3 (rpm) before *

unaffected

Default status

affected

1.8.0 (rpm) before *

unaffected

Default status

affected

1.8.0 (rpm) before *

unaffected

Default status

affected

1.8.0 (rpm) before *

unaffected

Default status

affected

2.2.1-1758555934 (rpm) before *

unaffected

Default status

affected

1.5.6-1756187445 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116455 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116482 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116441 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116449 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116439 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116447 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756128595 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756125872 (rpm) before *

unaffected

Default status

affected

rhosdt-3.5-1756116445 (rpm) before *

unaffected

Default status

affected

1.10.2-1757422110 (rpm) before *

unaffected

Default status

affected

1.10.2-1757421846 (rpm) before *

unaffected

Default status

affected

1.10.2-1757421804 (rpm) before *

unaffected

Default status

affected

1.10.2-1757422070 (rpm) before *

unaffected

Default status

affected

1.10.2-1757421879 (rpm) before *

unaffected

Default status

affected

1.10.2-1757422401 (rpm) before *

unaffected

Default status

affected

1.10.2-1757421890 (rpm) before *

unaffected

Default status

unknown

Timeline

2025-06-06:	Reported to Red Hat.
2025-05-20:	Made public.

References

github.com/libarchive/libarchive/pull/2598 exploit

access.redhat.com/errata/RHSA-2025:14130 (RHSA-2025:14130) vendor-advisory

access.redhat.com/errata/RHSA-2025:14135 (RHSA-2025:14135) vendor-advisory

access.redhat.com/errata/RHSA-2025:14137 (RHSA-2025:14137) vendor-advisory

access.redhat.com/errata/RHSA-2025:14141 (RHSA-2025:14141) vendor-advisory

access.redhat.com/errata/RHSA-2025:14142 (RHSA-2025:14142) vendor-advisory

access.redhat.com/errata/RHSA-2025:14525 (RHSA-2025:14525) vendor-advisory

access.redhat.com/errata/RHSA-2025:14528 (RHSA-2025:14528) vendor-advisory

access.redhat.com/errata/RHSA-2025:14594 (RHSA-2025:14594) vendor-advisory

access.redhat.com/errata/RHSA-2025:14644 (RHSA-2025:14644) vendor-advisory

access.redhat.com/errata/RHSA-2025:14808 (RHSA-2025:14808) vendor-advisory

access.redhat.com/errata/RHSA-2025:14810 (RHSA-2025:14810) vendor-advisory

access.redhat.com/errata/RHSA-2025:14828 (RHSA-2025:14828) vendor-advisory

access.redhat.com/errata/RHSA-2025:15024 (RHSA-2025:15024) vendor-advisory

access.redhat.com/errata/RHSA-2025:15397 (RHSA-2025:15397) vendor-advisory

access.redhat.com/errata/RHSA-2025:15709 (RHSA-2025:15709) vendor-advisory

access.redhat.com/errata/RHSA-2025:15827 (RHSA-2025:15827) vendor-advisory

access.redhat.com/errata/RHSA-2025:15828 (RHSA-2025:15828) vendor-advisory

access.redhat.com/errata/RHSA-2025:16524 (RHSA-2025:16524) vendor-advisory

access.redhat.com/errata/RHSA-2025:18217 (RHSA-2025:18217) vendor-advisory

access.redhat.com/errata/RHSA-2025:18218 (RHSA-2025:18218) vendor-advisory

access.redhat.com/errata/RHSA-2025:18219 (RHSA-2025:18219) vendor-advisory

access.redhat.com/errata/RHSA-2025:19041 (RHSA-2025:19041) vendor-advisory

access.redhat.com/errata/RHSA-2025:19046 (RHSA-2025:19046) vendor-advisory

access.redhat.com/errata/RHSA-2025:21885 (RHSA-2025:21885) vendor-advisory

access.redhat.com/errata/RHSA-2025:21913 (RHSA-2025:21913) vendor-advisory

access.redhat.com/errata/RHSA-2026:0326 (RHSA-2026:0326) vendor-advisory

access.redhat.com/errata/RHSA-2026:0934 (RHSA-2026:0934) vendor-advisory

access.redhat.com/errata/RHSA-2026:1541 (RHSA-2026:1541) vendor-advisory

access.redhat.com/security/cve/CVE-2025-5914 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2370861 (RHBZ#2370861) issue-tracking

github.com/libarchive/libarchive/pull/2598

github.com/libarchive/libarchive/releases/tag/v3.8.0

cve.org (CVE-2025-5914)

nvd.nist.gov (CVE-2025-5914)

Download JSON