cpe:/a:freebsd:libarchive:2.0 cpe:/a:freebsd:libarchive:2.1 cpe:/a:freebsd:libarchive:2.2 cpe:/a:freebsd:libarchive:2.2.3 cpe:/a:freebsd:libarchive:2.3 cpe:/a:freebsd:libarchive:2.4 cpe:/a:freebsd:libarchive:2.5 cpe:/a:freebsd:libarchive:2.6 cpe:/a:freebsd:libarchive:2.6.1 cpe:/a:freebsd:libarchive:2.6.2 cpe:/a:freebsd:libarchive:2.7.0 cpe:/a:freebsd:libarchive:2.7.1 cpe:/a:freebsd:libarchive:2.8.0 cpe:/a:freebsd:libarchive:2.8.1 cpe:/a:freebsd:libarchive:2.8.2 cpe:/a:freebsd:libarchive:2.8.3 cpe:/a:freebsd:libarchive:2.8.4 cpe:/a:freebsd:libarchive:2.8.5 CVE-2011-1777 2012-04-13T16:55:01.307-04:00 2018-01-09T21:29:00.927-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2012-04-16T10:20:00.000-04:00 SECUNIA 48034 APPLE APPLE-SA-2012-05-09-1 DEBIAN DSA-2413 REDHAT RHSA-2011:1507 CONFIRM http://code.google.com/p/libarchive/source/detail?r=3158 CONFIRM http://support.apple.com/kb/HT5281 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=705849 Multiple buffer overflows in the (1) heap_add_entry and (2) relocate_dir functions in archive_read_support_format_iso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ISO9660 image.