CVE-2023-40477

Published: 25 August 2023

RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of recovery volumes. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21233.

Priority

Status

Package	Release	Status
libclamunrar Launchpad, Ubuntu, Debian	bionic	Needed
	focal	Released (0.103.11-0ubuntu0.20.04.1)
	jammy	Released (0.103.11-0ubuntu0.22.04.1)
	lunar	Released (0.103.11-0ubuntu0.23.04.1)
	mantic	Released (1.0.4-0ubuntu0.23.10.1)
	noble	Not vulnerable (1.0.3-1)
	trusty	Ignored (end of standard support)
	upstream	Released (1.0.3-1,0.103.10)
	xenial	Needed
rar Launchpad, Ubuntu, Debian	bionic	Needed
	focal	Needed
	jammy	Needed
	lunar	Ignored (end of life, was needed)
	mantic	Released (2:6.23-1)
	noble	Released (2:6.23-1)
	trusty	Ignored (end of standard support)
	upstream	Released (2:6.23-1)
	xenial	Needed
unrar-nonfree Launchpad, Ubuntu, Debian	bionic	Needed
	focal	Needed
	jammy	Needed
	lunar	Ignored (end of life, was needed)
	mantic	Not vulnerable (1:6.2.10-1)
	noble	Not vulnerable (1:6.2.10-1)
	trusty	Ignored (end of standard support)
	upstream	Released (1:6.2.10-1)
	xenial	Needed

References

Bugs

https://bugs.launchpad.net/ubuntu/+source/clamav/+bug/2046372

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›