2049778 – (CVE-2022-23596) CVE-2022-23596 junrar: A carefully crafted RAR archive can trigger an infinite loop while extracting

Bug 2049778 (CVE-2022-23596) - CVE-2022-23596 junrar: A carefully crafted RAR archive can trigger an infinite loop while extracting

Summary: CVE-2022-23596 junrar: A carefully crafted RAR archive can trigger an infinit...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2022-23596
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	2049779
TreeView+	depends on / blocked

Reported:	2022-02-02 17:03 UTC by Guilherme de Almeida Suckevicz
Modified:	2022-07-07 19:09 UTC (History)
CC List:	24 users (show)
Fixed In Version:	junrar 7.4.1
Clone Of:
Environment:
Last Closed:	2022-07-07 19:09:17 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2022:5532	0	None	None	None	2022-07-07 14:22:17 UTC

Description Guilherme de Almeida Suckevicz 2022-02-02 17:03:12 UTC

Junrar is an open source java RAR archive library. In affected versions A carefully crafted RAR archive can trigger an infinite loop while extracting said archive. The impact depends solely on how the application uses the library, and whether files can be provided by malignant users. The problem is patched in 7.4.1. There are no known workarounds and users are advised to upgrade as soon as possible.

References:
https://github.com/junrar/junrar/issues/73
https://github.com/junrar/junrar/security/advisories/GHSA-m6cj-93v6-cvr5

Upstream patch:
https://github.com/junrar/junrar/commit/7b16b3d90b91445fd6af0adfed22c07413d4fab7

Comment 5 errata-xmlrpc 2022-07-07 14:22:15 UTC

This issue has been addressed in the following products:

  Red Hat Fuse 7.11

Via RHSA-2022:5532 https://access.redhat.com/errata/RHSA-2022:5532

Comment 6 Product Security DevOps Team 2022-07-07 19:09:15 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2022-23596

Note You need to log in before you can comment on or make changes to this bug.

aileenc
alazarot
anstephe
chazlett
drieden
emingora
etirelli
gmalinko
hbraun
ibek
janstey
jochrist
jrokos
jstastny
jwon
krathod
kverlaen
mnovotny
pantinor
pdelbell
pjindal
rguimara
rrajasek
tzimanyi