Several security issues were fixed in libarchive.
Software Description:
- libarchive: Library to read/write archive files
Details:
It was discovered that libarchive incorrectly handled certain archive
files. An attacker could possibly use this issue to access sensitive
information. This issue only affected Ubuntu 14.04 LTS. (CVE-2019-19221)
It was discovered that libarchive incorrectly handled certain RAR archive
files. If a user or automated system were tricked into processing a
specially crafted RAR archive, an attacker could possibly use this issue to
cause libarchive to crash, resulting in a denial of service, or execute
arbitrary code. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS
and Ubuntu 18.04 LTS. (CVE-2024-20696)
It was discovered that libarchive incorrectly handled certain RAR archive
files. An attacker could possibly use this issue to execute arbitrary code
or cause a denial of service. This issue only affected Ubuntu 14.04 LTS,
Ubuntu 16.04 LTS, Ubu...
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.10
libarchive-dev 3.7.7-0ubuntu3.1
libarchive-tools 3.7.7-0ubuntu3.1
libarchive13t64 3.7.7-0ubuntu3.1
Ubuntu 24.04 LTS
libarchive-dev 3.7.2-2ubuntu0.6
libarchive-tools 3.7.2-2ubuntu0.6
libarchive13t64 3.7.2-2ubuntu0.6
Ubuntu 22.04 LTS
libarchive-dev 3.6.0-1ubuntu1.6
libarchive-tools 3.6.0-1ubuntu1.6
libarchive13 3.6.0-1ubuntu1.6
Ubuntu 20.04 LTS
libarchive-dev 3.4.0-2ubuntu1.5+esm1
Available with Ubuntu Pro
libarchive-tools 3.4.0-2ubuntu1.5+esm1
Available with Ubuntu Pro
libarchive13 3.4.0-2ubuntu1.5+esm1
Available with Ubuntu Pro
Ubuntu 18.04 LTS
bsdcpio 3.2.2-3.1ubuntu0.7+esm2
Available with Ubuntu Pro
bsdtar 3.2.2-3.1ubuntu0.7+esm2
Available with Ubuntu Pro
libarchive-dev 3.2.2-3.1ubuntu0.7+esm2
Available with Ubuntu Pro
libarchive-tools 3.2.2-3.1ubuntu0.7+esm2
Available with Ubuntu Pro
libarchive13 3.2.2-3.1ubuntu0.7+esm2
Available with Ubuntu Pro
Ubuntu 16.04 LTS
bsdcpio 3.1.2-11ubuntu0.16.04.8+esm2
Available with Ubuntu Pro
bsdtar 3.1.2-11ubuntu0.16.04.8+esm2
Available with Ubuntu Pro
libarchive-dev 3.1.2-11ubuntu0.16.04.8+esm2
Available with Ubuntu Pro
libarchive13 3.1.2-11ubuntu0.16.04.8+esm2
Available with Ubuntu Pro
Ubuntu 14.04 LTS
bsdcpio 3.1.2-7ubuntu2.8+esm4
Available with Ubuntu Pro
bsdtar 3.1.2-7ubuntu2.8+esm4
Available with Ubuntu Pro
libarchive-dev 3.1.2-7ubuntu2.8+esm4
Available with Ubuntu Pro
libarchive13 3.1.2-7ubuntu2.8+esm4
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.https://ubuntu.com/security/notices/USN-8147-1
CVE-2019-19221, CVE-2024-20696, CVE-2025-25724, CVE-2025-5914,
CVE-2025-5916, CVE-2025-5917, CVE-2025-5918, CVE-2025-60753,
CVE-2026-4111
Get the latest Linux and open source security news straight to your inbox.