CVE-2016-4302

Heap-based buffer overflow in the parse_codes function in archive_read_support_format_rar.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a RAR file with a zero-sized dictionary.

Date published : 2016-09-21

http://www.securityfocus.com/bid/91331

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=1348444