Acknowledged
Created: Jun 10, 2025
Updated: Jul 2, 2025
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace
A vulnerability has been identified in the libarchive library, specifically within the archiv
e_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultim
ately lead to a double-free condition. Exploiting a double-free vulnerability can result in m
emory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service
condition.
CREATE(Triage):(User=lchen-cn) CVE-2025-5914 (https://nvd.nist.gov/vuln/detail/CVE-2025-5914)
