CVE-2026-4424
Published: March 20, 2026Last modified: May 5, 2026
Description
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 7.5 |
| Attack Vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | HIGH |
| Integrity impact | NONE |
| Availability impact | NONE |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | libarchive | Fixed (3.8.7-r0) |
| 25 LTS | libarchive | Fixed (3.8.7-r0) | |
| Stream | libarchive | Fixed (3.8.6-r1) |
References
- https://access.redhat.com/errata/RHSA-2026:10065
- https://access.redhat.com/errata/RHSA-2026:10097
- https://access.redhat.com/errata/RHSA-2026:11768
- https://access.redhat.com/errata/RHSA-2026:12071
- https://access.redhat.com/errata/RHSA-2026:12274
- https://access.redhat.com/errata/RHSA-2026:13812
- https://access.redhat.com/errata/RHSA-2026:14773
- https://access.redhat.com/errata/RHSA-2026:14937
- https://access.redhat.com/errata/RHSA-2026:15087
- https://access.redhat.com/errata/RHSA-2026:16008
- https://access.redhat.com/errata/RHSA-2026:16009
- https://access.redhat.com/errata/RHSA-2026:16030
- https://access.redhat.com/errata/RHSA-2026:16174
- https://access.redhat.com/errata/RHSA-2026:17596
- https://access.redhat.com/errata/RHSA-2026:19724
- https://access.redhat.com/errata/RHSA-2026:19725
- https://access.redhat.com/errata/RHSA-2026:8492
- https://access.redhat.com/errata/RHSA-2026:8510
- https://access.redhat.com/errata/RHSA-2026:8517
- https://access.redhat.com/errata/RHSA-2026:8521
- https://access.redhat.com/errata/RHSA-2026:8534
- https://access.redhat.com/errata/RHSA-2026:8864
- https://access.redhat.com/errata/RHSA-2026:8865
- https://access.redhat.com/errata/RHSA-2026:8866
- https://access.redhat.com/errata/RHSA-2026:8867
- https://access.redhat.com/errata/RHSA-2026:8873
- https://access.redhat.com/errata/RHSA-2026:8908
- https://access.redhat.com/errata/RHSA-2026:8944
- https://access.redhat.com/errata/RHSA-2026:9026
- https://access.redhat.com/errata/RHSA-2026:9592
- https://access.redhat.com/errata/RHSA-2026:9832
- https://access.redhat.com/security/cve/CVE-2026-4424
- https://bugzilla.redhat.com/show_bug.cgi?id=2449006
- https://github.com/libarchive/libarchive/pull/2898