Package: libarchive13 Version: 3.2.2-3.1 $ valgrind --quiet -- bsdtar -xf oob.rar ==1880== Invalid read of size 1 ==1880== at 0x4832FF0: memcpy (in /usr/lib/valgrind/vgpreload_memcheck-x86-linux.so) ==1880== by 0x489B5E0: memcpy (string3.h:53) ==1880== by 0x489B5E0: read_header (archive_read_support_format_rar.c:1577) ==1880== by 0x489C347: archive_read_format_rar_read_header (archive_read_support_format_rar.c:932) ==1880== by 0x4873A54: _archive_read_next_header2 (archive_read.c:649) ==1880== by 0x4873B5B: _archive_read_next_header (archive_read.c:687) ==1880== by 0x10D384: read_archive (read.c:261) ==1880== by 0x10DCAC: tar_mode_x (read.c:112) ==1880== by 0x10C2BB: main (bsdtar.c:809) ==1880== Address 0x6ca726a is 0 bytes after a block of size 98 alloc'd ==1880== at 0x482E1FC: malloc (in /usr/lib/valgrind/vgpreload_memcheck-x86-linux.so) ==1880== by 0x4830520: realloc (in /usr/lib/valgrind/vgpreload_memcheck-x86-linux.so) ==1880== by 0x489B451: read_header (archive_read_support_format_rar.c:1423) ==1880== by 0x489C347: archive_read_format_rar_read_header (archive_read_support_format_rar.c:932) ==1880== by 0x4873A54: _archive_read_next_header2 (archive_read.c:649) ==1880== by 0x4873B5B: _archive_read_next_header (archive_read.c:687) ==1880== by 0x10D384: read_archive (read.c:261) ==1880== by 0x10DCAC: tar_mode_x (read.c:112) ==1880== by 0x10C2BB: main (bsdtar.c:809) ==1880== bsdtar: Unknown file attributes from RAR file's host OS bsdtar: Error exit delayed from previous errors.
Found using American Fuzzy Lop: http://lcamtuf.coredump.cx/afl/ -- System Information: Architecture: i386 Versions of packages libarchive13 depends on: ii libacl1 2.2.52-3+b1 ii libbz2-1.0 1.0.6-8.1 ii libc6 2.24-17 ii liblz4-1 0.0~r131-2+b1 ii liblzma5 5.2.2-1.3 ii liblzo2-2 2.08-1.2+b2 ii libnettle6 3.3-2 ii libxml2 2.9.4+dfsg1-4 ii zlib1g 1:1.2.8.dfsg-5 -- Jakub Wilk
oob.rar
Description: application/rar
