DEBIAN-CVE-2017-11189
- Source
- https://security-tracker.debian.org/tracker/CVE-2017-11189
- Import Source
- https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2017-11189.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2017-11189
- Upstream
- Published
- 2017-07-12T16:29:00.217Z
- Modified
- 2025-11-14T03:05:44.136214Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
unrarlib.c in unrar-free 0.0.1 might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash), which could be relevant if unrarlib is used as library code for a long-running application. NOTE: one of the several test cases in the references may be the same as what was separately reported as CVE-2017-14121.
- References
Affected packages
Debian:11 / unrar-free
Package
- Name
- unrar-free
- Purl
- pkg:deb/debian/unrar-free?arch=source
Debian:12 / unrar-free
Package
- Name
- unrar-free
- Purl
- pkg:deb/debian/unrar-free?arch=source
Debian:13 / unrar-free
Package
- Name
- unrar-free
- Purl
- pkg:deb/debian/unrar-free?arch=source
Debian:14 / unrar-free
Package
- Name
- unrar-free
- Purl
- pkg:deb/debian/unrar-free?arch=source