Vulnerability-Lookup

RHSA-2016:1852

Vulnerability from csaf_redhat - Published: 2016-09-12 17:34 - Updated: 2025-11-21 17:57

Summary

Red Hat Security Advisory: Red Hat OpenShift Enterprise 3.1 security update

Severity

Important

Notes

Topic: An update for Red Hat OpenShift Enterprise 3.1 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments. Security Fix(es): * A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with arbitrary data from the archive. (CVE-2016-5418) Red Hat would like to thank Insomnia Security for reporting this issue.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2016-5418

A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with arbitrary data from the archive.

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Vendor Fix For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The following images are included in this errata: openshift3/openvswitch:v3.1.1.7 openshift3/ose-pod:v3.1.1.7 openshift3/ose:v3.1.1.7 openshift3/ose-docker-registry:v3.1.1.7 openshift3/ose-keepalived-ipfailover:v3.1.1.7 openshift3/ose-recycler:v3.1.1.7 openshift3/ose-f5-router:v3.1.1.7 openshift3/ose-deployer:v3.1.1.7 openshift3/node:v3.1.1.7 openshift3/ose-sti-builder:v3.1.1.7 openshift3/ose-docker-builder:v3.1.1.7 openshift3/ose-haproxy-router:v3.1.1.7 https://access.redhat.com/errata/RHSA-2016:1852

References

URL

Category

	https://access.redhat.com/errata/RHSA-2016:1852	self
	https://access.redhat.com/security/updates/classi…	external
	https://bugzilla.redhat.com/show_bug.cgi?id=1362601	external
	https://security.access.redhat.com/data/csaf/v2/a…	self
	https://access.redhat.com/security/cve/CVE-2016-5418	self
	https://bugzilla.redhat.com/show_bug.cgi?id=1362601	external
	https://www.cve.org/CVERecord?id=CVE-2016-5418	external
	https://nvd.nist.gov/vuln/detail/CVE-2016-5418	external
	http://seclists.org/oss-sec/2016/q3/255	external

Acknowledgments

Insomnia Security

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for Red Hat OpenShift Enterprise 3.1 is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "OpenShift Enterprise by Red Hat is the company\u0027s cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.\n\nSecurity Fix(es):\n\n* A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive\u0027s file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with arbitrary data from the archive. (CVE-2016-5418)\n\nRed Hat would like to thank Insomnia Security for reporting this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2016:1852",
        "url": "https://access.redhat.com/errata/RHSA-2016:1852"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1362601",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362601"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_1852.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Enterprise 3.1 security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:57:31+00:00",
      "generator": {
        "date": "2025-11-21T17:57:31+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2016:1852",
      "initial_release_date": "2016-09-12T17:34:30+00:00",
      "revision_history": [
        {
          "date": "2016-09-12T17:34:30+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2016-09-12T17:34:31+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:57:31+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Enterprise 3.1",
                "product": {
                  "name": "Red Hat OpenShift Enterprise 3.1",
                  "product_id": "7Server-RH7-RHOSE-3.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:3.1::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-clients@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-master@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-node@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                "product": {
                  "name": "atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_id": "atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-pod@3.1.1.7-1.git.0.65f396b.el7aos?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
                "product": {
                  "name": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
                  "product_id": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.7-1.git.0.65f396b.el7aos?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src"
        },
        "product_reference": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
          "product_id": "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        },
        "product_reference": "tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Insomnia Security"
          ]
        }
      ],
      "cve": "CVE-2016-5418",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2016-07-28T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1362601"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive\u0027s file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with arbitrary data from the archive.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "libarchive: Archive Entry with type 1 (hardlink), but has a non-zero data size file overwrite",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
          "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2016-5418"
        },
        {
          "category": "external",
          "summary": "RHBZ#1362601",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362601"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2016-5418",
          "url": "https://www.cve.org/CVERecord?id=CVE-2016-5418"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5418",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5418"
        },
        {
          "category": "external",
          "summary": "http://seclists.org/oss-sec/2016/q3/255",
          "url": "http://seclists.org/oss-sec/2016/q3/255"
        }
      ],
      "release_date": "2016-09-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2016-09-12T17:34:30+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe following images are included in this errata:\n\nopenshift3/openvswitch:v3.1.1.7\nopenshift3/ose-pod:v3.1.1.7\nopenshift3/ose:v3.1.1.7\nopenshift3/ose-docker-registry:v3.1.1.7\nopenshift3/ose-keepalived-ipfailover:v3.1.1.7\nopenshift3/ose-recycler:v3.1.1.7\nopenshift3/ose-f5-router:v3.1.1.7\nopenshift3/ose-deployer:v3.1.1.7\nopenshift3/node:v3.1.1.7\nopenshift3/ose-sti-builder:v3.1.1.7\nopenshift3/ose-docker-builder:v3.1.1.7\nopenshift3/ose-haproxy-router:v3.1.1.7",
          "product_ids": [
            "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2016:1852"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 4.6,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.src",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64",
            "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.7-1.git.0.65f396b.el7aos.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "libarchive: Archive Entry with type 1 (hardlink), but has a non-zero data size file overwrite"
    }
  ]
}

CVE-2016-5418 (GCVE-0-2016-5418)

Vulnerability from cvelistv5 – Published: 2016-09-21 14:00 – Updated: 2024-08-06 01:00

Summary

The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

Tags

	https://bugzilla.redhat.com/show_bug.cgi?id=1362601	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2016:1852	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2016:1853	vendor-advisoryx_refsource_REDHAT
	https://github.com/libarchive/libarchive/commit/d…	x_refsource_CONFIRM
	http://rhn.redhat.com/errata/RHSA-2016-1844.html	vendor-advisoryx_refsource_REDHAT
	http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
	https://gist.github.com/anonymous/e48209b03f1dd96…	x_refsource_MISC
	https://github.com/libarchive/libarchive/issues/746	x_refsource_CONFIRM
	http://rhn.redhat.com/errata/RHSA-2016-1850.html	vendor-advisoryx_refsource_REDHAT
	https://security.gentoo.org/glsa/201701-03	vendor-advisoryx_refsource_GENTOO
	http://www.securityfocus.com/bid/93165	vdb-entryx_refsource_BID
	http://www.openwall.com/lists/oss-security/2016/08/09/2	mailing-listx_refsource_MLIST

Date Public ?

2016-08-09 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T01:00:59.971Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362601"
          },
          {
            "name": "RHSA-2016:1852",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1852"
          },
          {
            "name": "RHSA-2016:1853",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1853"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/libarchive/libarchive/commit/dfd6b54ce33960e420fb206d8872fb759b577ad9"
          },
          {
            "name": "RHSA-2016:1844",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2016-1844.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://gist.github.com/anonymous/e48209b03f1dd9625a992717e7b89c4f"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/libarchive/libarchive/issues/746"
          },
          {
            "name": "RHSA-2016:1850",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2016-1850.html"
          },
          {
            "name": "GLSA-201701-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/201701-03"
          },
          {
            "name": "93165",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/93165"
          },
          {
            "name": "[oss-security] 20160809 FreeBSD update components vulns (libarchive, bsdiff, portsnap)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2016/08/09/2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-08-09T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-06-30T16:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362601"
        },
        {
          "name": "RHSA-2016:1852",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1852"
        },
        {
          "name": "RHSA-2016:1853",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1853"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/libarchive/libarchive/commit/dfd6b54ce33960e420fb206d8872fb759b577ad9"
        },
        {
          "name": "RHSA-2016:1844",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2016-1844.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://gist.github.com/anonymous/e48209b03f1dd9625a992717e7b89c4f"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/libarchive/libarchive/issues/746"
        },
        {
          "name": "RHSA-2016:1850",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2016-1850.html"
        },
        {
          "name": "GLSA-201701-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/201701-03"
        },
        {
          "name": "93165",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/93165"
        },
        {
          "name": "[oss-security] 20160809 FreeBSD update components vulns (libarchive, bsdiff, portsnap)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2016/08/09/2"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2016-5418",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1362601",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362601"
            },
            {
              "name": "RHSA-2016:1852",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2016:1852"
            },
            {
              "name": "RHSA-2016:1853",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2016:1853"
            },
            {
              "name": "https://github.com/libarchive/libarchive/commit/dfd6b54ce33960e420fb206d8872fb759b577ad9",
              "refsource": "CONFIRM",
              "url": "https://github.com/libarchive/libarchive/commit/dfd6b54ce33960e420fb206d8872fb759b577ad9"
            },
            {
              "name": "RHSA-2016:1844",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2016-1844.html"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html"
            },
            {
              "name": "https://gist.github.com/anonymous/e48209b03f1dd9625a992717e7b89c4f",
              "refsource": "MISC",
              "url": "https://gist.github.com/anonymous/e48209b03f1dd9625a992717e7b89c4f"
            },
            {
              "name": "https://github.com/libarchive/libarchive/issues/746",
              "refsource": "CONFIRM",
              "url": "https://github.com/libarchive/libarchive/issues/746"
            },
            {
              "name": "RHSA-2016:1850",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2016-1850.html"
            },
            {
              "name": "GLSA-201701-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/201701-03"
            },
            {
              "name": "93165",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/93165"
            },
            {
              "name": "[oss-security] 20160809 FreeBSD update components vulns (libarchive, bsdiff, portsnap)",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2016/08/09/2"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2016-5418",
    "datePublished": "2016-09-21T14:00:00.000Z",
    "dateReserved": "2016-06-10T00:00:00.000Z",
    "dateUpdated": "2024-08-06T01:00:59.971Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHSA-2016:1852

CVE-2016-5418 (GCVE-0-2016-5418)

Tags

Sightings

Nomenclature