CVE-2021-36976

nvd nist

Published: Jul 20, 2021Modified: Nov 3, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).

Affected (9)

Products: Libarchive: Libarchive · Fedoraproject: Fedora · Apple: Ipados, Iphone Os, Macos, Watchos · +1 more

Show all products

Libarchive: Libarchive · Fedoraproject: Fedora · Apple: Ipados, Iphone Os, Macos, Watchos · Splunk: Universal Forwarder

1 product

1 product

4 products

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Libarchive Libarchive	From 3.4.1 to 3.5.2

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 35

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Apple Ipados	Before 15.4
Apple Iphone Os	Before 15.4
Apple Macos	Before 12.3
Apple Watchos	Before 8.5

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Splunk Universal Forwarder	From 8.2.0 to 8.2.12
Splunk Universal Forwarder	From 9.0.0 to 9.0.6
Splunk Universal Forwarder	Version 9.1.0

Related CWEs

CWE-416

Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (21)

http://seclists.org/fulldisclosure/2022/Mar/27

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2022/Mar/28

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2022/Mar/29

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=32375

Source: cve@mitre.org

Issue TrackingThird Party Advisory

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libarchive/OSV-2021-557.yaml

Source: cve@mitre.org

Third Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SE5NJQNM22ZE5Z55LPAGCUHSBQZBKMKC/

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/202208-26

Source: cve@mitre.org

Third Party Advisory

https://support.apple.com/kb/HT213182

Source: cve@mitre.org

Third Party Advisory

https://support.apple.com/kb/HT213183

Source: cve@mitre.org

Third Party Advisory

https://support.apple.com/kb/HT213193

Source: cve@mitre.org

Third Party Advisory

http://seclists.org/fulldisclosure/2022/Mar/27