CVE-2025-5917

NameCVE-2025-5917
DescriptionA vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to unpredictable program behavior, crashes, or in specific circumstances, could be leveraged as a building block for more sophisticated exploitation.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1107626

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
libarchive (PTS)bullseye3.4.3-2+deb11u1vulnerable
bullseye (security)3.4.3-2+deb11u2vulnerable
bookworm3.6.2-1+deb12u3fixed
bookworm (security)3.6.2-1+deb12u2vulnerable
forky, sid, trixie3.7.4-4fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
libarchivesourcebookworm3.6.2-1+deb12u3
libarchivesource(unstable)3.7.4-41107626

Notes

[bullseye] - libarchive <postponed> (Minor issue)
https://github.com/libarchive/libarchive/pull/2588
Fixed by: https://github.com/libarchive/libarchive/commit/7c02cde37a63580cd1859183fbbd2cf04a89be85 (v3.8.0)
Search for package or bug name: Reporting problems