A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to improper validation of the LZSS sliding window size after transitions between compression methods. A remote attacker can exploit this by providing a specially crafted RAR archive, leading to the disclosure of sensitive heap memory information without requiring authentication or user interaction.
Attack Parameters
Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed
Impact Assessment
Confidentiality
High
Complete data leak
Integrity
None
No data modification
Availability
None
No disruption
CVSS Vector v3.1
Weakness Type (CWE)
References 8
https://access.redhat.com/security/cve/CVE-2026-4424
secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2449006
secalert@redhat.com
https://github.com/libarchive/libarchive/pull/2898
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:8492
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:8510
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:8517
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:8521
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:8534
secalert@redhat.com