CVE-2025-5914

A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.

Weakness

The product calls free() twice on the same memory address.

Affected Software

Name	Vendor	Start Version	End Version
Libarchive	Libarchive	*	3.8.0 (excluding)
Red Hat Enterprise Linux 10	RedHat	libarchive-0:3.7.7-4.el10_0	*
Red Hat Enterprise Linux 7 Extended Lifecycle Support	RedHat	libarchive-0:3.1.2-14.el7_9.1	*
Red Hat Enterprise Linux 8	RedHat	libarchive-0:3.3.3-6.el8_10	*
Red Hat Enterprise Linux 8.2 Advanced Update Support	RedHat	libarchive-0:3.3.2-8.el8_2.1	*
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support	RedHat	libarchive-0:3.3.3-1.el8_4.1	*
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On	RedHat	libarchive-0:3.3.3-1.el8_4.1	*
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support	RedHat	libarchive-0:3.3.3-6.el8_6	*
Red Hat Enterprise Linux 8.6 Telecommunications Update Service	RedHat	libarchive-0:3.3.3-6.el8_6	*
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions	RedHat	libarchive-0:3.3.3-6.el8_6	*
Red Hat Enterprise Linux 8.8 Telecommunications Update Service	RedHat	libarchive-0:3.3.3-5.el8_8.1	*
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions	RedHat	libarchive-0:3.3.3-5.el8_8.1	*
Red Hat Enterprise Linux 9	RedHat	libarchive-0:3.5.3-6.el9_6	*
Red Hat Enterprise Linux 9	RedHat	libarchive-0:3.5.3-6.el9_6	*
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions	RedHat	libarchive-0:3.5.3-2.el9_0.1	*
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions	RedHat	libarchive-0:3.5.3-5.el9_2	*
Red Hat Enterprise Linux 9.4 Extended Update Support	RedHat	libarchive-0:3.5.3-4.el9_4.1	*
Red Hat OpenShift Container Platform 4.14	RedHat	rhcos-414.92.202510211419-0	*
Red Hat OpenShift Container Platform 4.16	RedHat	rhcos-416.94.202601071926-0	*
Red Hat OpenShift Container Platform 4.17	RedHat	rhcos-417.94.202510112152-0	*
Red Hat OpenShift Container Platform 4.18	RedHat	rhcos-418.94.202510230424-0	*
Red Hat OpenShift Container Platform 4.19	RedHat	rhcos-4.19.9.6.202510140714-0	*
Red Hat OpenShift Container Platform 4.20	RedHat	rhcos-4.20.9.6.202509251656-0	*
Red Hat Web Terminal 1.11 on RHEL 9	RedHat	web-terminal/web-terminal-rhel9-operator:1.11-19	*
Red Hat Web Terminal 1.11 on RHEL 9	RedHat	web-terminal/web-terminal-tooling-rhel9:1.11-8	*
Red Hat Web Terminal 1.12 on RHEL 9	RedHat	web-terminal/web-terminal-tooling-rhel9:1.12-4	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-data-index-ephemeral-rhel8:1.36.0-11	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-data-index-postgresql-rhel8:1.36.0-11	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-db-migrator-tool-rhel8:1.36.0-11	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-jobs-service-ephemeral-rhel8:1.36.0-10	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-jobs-service-postgresql-rhel8:1.36.0-10	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8:1.36.0-4	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-management-console-rhel8:1.36.0-9	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-operator-bundle:1.36.0-12	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-rhel8-operator:1.36.0-18	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-swf-builder-rhel8:1.36.0-11	*
RHOSS-1.36-RHEL-8	RedHat	openshift-serverless-1/logic-swf-devmode-rhel8:1.36.0-7	*
Cert-manager operator for Red Hat OpenShift 1.16	RedHat	cert-manager/jetstack-cert-manager-rhel9:sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b	*
Compliance Operator 1	RedHat	compliance/openshift-compliance-must-gather-rhel8:sha256:6ab41bd207ae7e33f29adc87e208366472654bb5fb9b1854234cc5674ecc169e	*
Compliance Operator 1	RedHat	compliance/openshift-compliance-openscap-rhel8:sha256:c953e9f9abf9cf25bf65bb3ffdc86ccf49b3e69a1cf3fbb47b6972e421fd6628	*
Compliance Operator 1	RedHat	compliance/openshift-compliance-rhel8-operator:sha256:0903a7a5c857d96c84fd022e5785514eff201047e2fdd5d6699d79f17440ef02	*
File Integrity Operator 1	RedHat	compliance/openshift-file-integrity-rhel8-operator:sha256:364d11af112a5b1d3f28c9ea8b7aac678e111b9c7fca0516d61036904f318605	*
Red Hat Discovery 2	RedHat	discovery/discovery-server-rhel9:sha256:1c67d8d526ab4f2854947f7dccd8752a2efd414c0f1cbab17706fa91147e7cda	*
Red Hat Insights proxy 1.5	RedHat	insights-proxy/insights-proxy-container-rhel9:sha256:b7f671263af799e681ccca9b07420c1b5cee369282b5e1520557ee2414618652	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-agent-rhel8:sha256:5604dbb58d5e31f399f41ae4bf7a766272bf091a4e1bd6e89d1b85d62b0db93a	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-all-in-one-rhel8:sha256:03b0aced2885356099971c8470add4b0f7732bcb380c74be3691d30c2894e5c0	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-collector-rhel8:sha256:a51ae66a32ddfa21fc4c9bcd42540a8e12c5a59b0e8c27369dd1689a924bbebe	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-es-index-cleaner-rhel8:sha256:e17c9de114b6b89e9c66642ab5f95b62321d367b6d22be1464cf89dbc3ead673	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-es-rollover-rhel8:sha256:d0878cf4a206d3f70a7a8fc3d5d30f0272697afcb360599b248da9215ec60366	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-ingester-rhel8:sha256:25bf841bfc90928c684f6cf07329d5551806503fbb42806fe564f90fdf98d743	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-operator-bundle:sha256:f250e39033d7cb1d786e5a7ec6798c25d4c5d8c6ecbcf6828915605fc4658da5	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-query-rhel8:sha256:35a048b43d21f9f05df76fc7cb5766eb1f708be1c0012f117fdc09851b8047e1	*
Red Hat OpenShift distributed tracing 3.5.1	RedHat	rhosdt/jaeger-rhel8-operator:sha256:c1e80172a78d227fb1076cbf608e42b2c551cc09233abd9a6ada74af06758447	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-cloud-api-adaptor-rhel9:sha256:7b6bd3411ca5ec140968975d4f11f3ec0686b6fbca0ce05288e041ee2e569a89	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-cloud-api-adaptor-webhook-rhel9:sha256:7b7c0b42ff8814d9d0cfa1b0ec9e58aebe79bc5cfbc658384f026d8493ae6fbe	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-monitor-rhel9:sha256:9ff002e628e5646b5ab3cc9201087847bea29569b4a1bc135b89d5c1a5f0a422	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-must-gather-rhel9:sha256:e45dfb3b2bcc1e13376fc017ba00bbc2966a61c097fdeae8edddfd13b7d69f91	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-podvm-builder-rhel9:sha256:8f29671308ca658e32e97d5c3b482f7541aae1bca1b71f39b3276a9a334d8108	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-podvm-payload-rhel9:sha256:8caeae7ffadf08840a47bc90c390ff402dd7db11457bca48f4e08a11e394be74	*
Red Hat OpenShift sandboxed containers 1.1	RedHat	openshift-sandboxed-containers/osc-rhel9-operator:sha256:616297cf428a55918fad3653d7aca18fe3c1f622ff63ab9885991bd6dbc6ed65	*
Libarchive	Ubuntu	devel	*
Libarchive	Ubuntu	esm-infra-legacy/trusty	*
Libarchive	Ubuntu	esm-infra/bionic	*
Libarchive	Ubuntu	esm-infra/focal	*
Libarchive	Ubuntu	esm-infra/xenial	*
Libarchive	Ubuntu	jammy	*
Libarchive	Ubuntu	noble	*
Libarchive	Ubuntu	oracular	*
Libarchive	Ubuntu	plucky	*
Libarchive	Ubuntu	questing	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-5914
CWE	https://cwe.mitre.org/data/definitions/415.html

Double Free

Weakness

Affected Software

Potential Mitigations

References