Libarchive Remote Code Execution Vulnerability

The version of libarchive installed on the remote host is prior to 3.7.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-258-01 advisory.

    New libarchive packages are available for Slackware 15.0 and -current to fix security issues.

Tenable has extracted the preceding description block directly from the libarchive security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

An update of the libarchive package has been released.

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-b15a51292f advisory.

    Fix for CVE-2024-26256

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5706 advisory.

    - -------------------------------------------------------------------------     Debian Security Advisory DSA-5706-1                   security@debian.org     https://www.debian.org/security/                     Salvatore Bonaccorso     June 05, 2024                         https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package        : libarchive     CVE ID         : CVE-2024-26256     Debian Bug     : 1072107

    An integer overflow vulnerability in the rar e8 filter was discovered in     libarchive, a multi-format archive and compression library, which may     result in the execution of arbitrary code if a specially crafted RAR     archive is processed.

    For the stable distribution (bookworm), this problem has been fixed in     version 3.6.2-1+deb12u1.

    We recommend that you upgrade your libarchive packages.

    For the detailed security status of libarchive please refer to its     security tracker page at:
    https://security-tracker.debian.org/tracker/libarchive

    Further information about Debian Security Advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 22.04 LTS / 23.10 / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6805-1 advisory.

    It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could     possibly use this issue to execute arbitrary code or cause a crash.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-cbb72aad83 advisory.

    Automatic update for libarchive-3.7.2-4.fc40.


Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of libarchive installed on the remote host is prior to 3.7.3. It is, therefore, affected by a vulnerability as referenced in the SSA:2024-116-01 advisory.

  - libarchive Remote Code Execution Vulnerability (CVE-2024-26256)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Windows host is missing security update 5036910. It is, therefore, affected by multiple vulnerabilities

  - SmartScreen Prompt Security Feature Bypass Vulnerability (CVE-2024-29988)

  - Secure Boot Security Feature Bypass Vulnerability (CVE-2024-20669, CVE-2024-26168, CVE-2024-26171,     CVE-2024-26175, CVE-2024-26180, CVE-2024-26189, CVE-2024-26194, CVE-2024-26240, CVE-2024-26250,     CVE-2024-28896, CVE-2024-28897, CVE-2024-28898, CVE-2024-28903, CVE-2024-28919, CVE-2024-28920,     CVE-2024-28921, CVE-2024-28922, CVE-2024-28923, CVE-2024-28924, CVE-2024-28925, CVE-2024-29061,     CVE-2024-29062)

  - Windows rndismp6.sys Remote Code Execution Vulnerability (CVE-2024-26252, CVE-2024-26253)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Windows host is missing security update 5036893. It is, therefore, affected by multiple vulnerabilities

  - SmartScreen Prompt Security Feature Bypass Vulnerability (CVE-2024-29988)

  - Secure Boot Security Feature Bypass Vulnerability (CVE-2024-20669, CVE-2024-26168, CVE-2024-26171,     CVE-2024-26175, CVE-2024-26180, CVE-2024-26189, CVE-2024-26194, CVE-2024-26240, CVE-2024-26250,     CVE-2024-28896, CVE-2024-28897, CVE-2024-28898, CVE-2024-28903, CVE-2024-28919, CVE-2024-28920,     CVE-2024-28921, CVE-2024-28922, CVE-2024-28923, CVE-2024-28924, CVE-2024-28925, CVE-2024-29061,     CVE-2024-29062)

  - Windows rndismp6.sys Remote Code Execution Vulnerability (CVE-2024-26252, CVE-2024-26253)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
207273	Slackware Linux 15.0 / current libarchive Multiple Vulnerabilities (SSA:2024-258-01)	Nessus	Slackware Local Security Checks	high
204240	Photon OS 5.0: Libarchive PHSA-2024-5.0-0301	Nessus	PhotonOS Local Security Checks	high
200376	Fedora 39 : libarchive (2024-b15a51292f)	Nessus	Fedora Local Security Checks	high
200134	Debian dsa-5706 : libarchive-dev - security update	Nessus	Debian Local Security Checks	high
200099	Ubuntu 22.04 LTS / 23.10 / 24.04 LTS : libarchive vulnerability (USN-6805-1)	Nessus	Ubuntu Local Security Checks	high
198289	Fedora 40 : libarchive (2024-cbb72aad83)	Nessus	Fedora Local Security Checks	high
193889	Slackware Linux 15.0 / current libarchive Vulnerability (SSA:2024-116-01)	Nessus	Slackware Local Security Checks	high
193102	KB5036910: Windows 11 version 22H2 / Windows Server version 23H2 Security Update (April 2024)	Nessus	Windows : Microsoft Bulletins	high
193096	KB5036893: Windows 11 version 22H2 / Windows 11 version 23H2 Security Update (April 2024)	Nessus	Windows : Microsoft Bulletins	high

Detections

Analytics

CVE-2024-26256

high

Tenable Plugins

high

high

high

high

high

high

high

high

high