CVE-2020-3810

Summary

Missing input validation in the ar/tar implementations of APT before version 2.1.2 could result in denial of service when processing specially crafted deb files.

Affected Software

VendorProductVersion RangeStatus
Debianaptbefore 2.1.2affected

Weaknesses

  • apt out-of-bounds read in .ar/.tar implemations

ADP Enrichment

CVE Program Container

Additional References

References