DescriptionInsufficient exception handling in the method NCompress::NRar3::CDecoder::Code of 7-Zip before 18.00 and p7zip can lead to multiple memory corruptions within the PPMd code, allows remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs888314

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
p7zip-rar (PTS)buster/non-free, bullseye/non-free, bookworm/non-free16.02-3fixed
trixie/non-free, sid/non-free16.02+transitional.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs


[stretch] - p7zip-rar <no-dsa> (Non-free not supported)
[jessie] - p7zip-rar <no-dsa> (Non-free not supported)
[wheezy] - p7zip-rar <no-dsa> (Non-free not supported)

Search for package or bug name: Reporting problems