CVE-2025-5914

Summary

A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.

Affected Software

VendorProductVersion RangeStatus
0 < 3.8.0affected
Red HatRed Hat Enterprise Linux 100:3.7.7-4.el10_0 < *unaffected
Red HatRed Hat Enterprise Linux 7 Extended Lifecycle Support0:3.1.2-14.el7_9.1 < *unaffected
Red HatRed Hat Enterprise Linux 80:3.3.3-6.el8_10 < *unaffected
Red HatRed Hat Enterprise Linux 8.2 Advanced Update Support0:3.3.2-8.el8_2.1 < *unaffected
Red HatRed Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support0:3.3.3-1.el8_4.1 < *unaffected
Red HatRed Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On0:3.3.3-1.el8_4.1 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support0:3.3.3-6.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Telecommunications Update Service0:3.3.3-6.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.6 Update Services for SAP Solutions0:3.3.3-6.el8_6 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Telecommunications Update Service0:3.3.3-5.el8_8.1 < *unaffected
Red HatRed Hat Enterprise Linux 8.8 Update Services for SAP Solutions0:3.3.3-5.el8_8.1 < *unaffected
Red HatRed Hat Enterprise Linux 90:3.5.3-6.el9_6 < *unaffected
Red HatRed Hat Enterprise Linux 90:3.5.3-6.el9_6 < *unaffected
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions0:3.5.3-2.el9_0.1 < *unaffected
Red HatRed Hat Enterprise Linux 9.2 Update Services for SAP Solutions0:3.5.3-5.el9_2 < *unaffected
Red HatRed Hat Enterprise Linux 9.4 Extended Update Support0:3.5.3-4.el9_4.1 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.14414.92.202510211419-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.15415.92.202601271320-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.16416.94.202601071926-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.17417.94.202510112152-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.18418.94.202510230424-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.194.19.9.6.202510140714-0 < *unaffected
Red HatRed Hat OpenShift Container Platform 4.204.20.9.6.202509251656-0 < *unaffected
Red HatRed Hat Web Terminal 1.11 on RHEL 91.11-19 < *unaffected
Red HatRed Hat Web Terminal 1.11 on RHEL 91.11-8 < *unaffected
Red HatRed Hat Web Terminal 1.12 on RHEL 91.12-4 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-11 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-11 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-11 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-10 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-10 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-4 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-9 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-12 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-18 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-11 < *unaffected
Red HatRHOSS-1.36-RHEL-81.36.0-7 < *unaffected
Red Hatcert-manager operator for Red Hat OpenShift 1.16v1.16.5-1760515757 < *unaffected
Red HatOpenShift Compliance Operator 11.8.0 < *unaffected
Red HatOpenShift Compliance Operator 11.8.0 < *unaffected
Red HatOpenShift Compliance Operator 11.8.0 < *unaffected
Red HatOpenShift File Integrity Operator - FIO 1v1.3 < *unaffected
Red HatRed Hat Discovery 22.2.1-1758555934 < *unaffected
Red HatRed Hat Insights proxy 1.51.5.6-1756187445 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116455 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116482 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116441 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116449 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116439 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116447 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756128595 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756125872 < *unaffected
Red HatRed Hat OpenShift distributed tracing 3.5.1rhosdt-3.5-1756116445 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757422110 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757421846 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757421804 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757422070 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757421879 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757422401 < *unaffected
Red HatRed Hat OpenShift sandboxed containers 1.11.10.2-1757421890 < *unaffected

Weaknesses

  • CWE-190: Integer Overflow or Wraparound

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

Additional References

References