Junrar is an open source java RAR archive library. In affected versions A carefully crafted RAR archive can trigger an infinite loop while extracting said archive. The impact depends solely on how the application uses the library, and whether files can be provided by malignant users. The problem is patched in 7.4.1. There are no known workarounds and users are advised to upgrade as soon as possible.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2022-02-01T11:52:47

Updated: 2024-08-03T03:43:46.870Z

Reserved: 2022-01-19T00:00:00

Link: CVE-2022-23596

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-02-01T12:15:08.257

Modified: 2024-11-21T06:48:53.677

Link: CVE-2022-23596

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-01-27T00:00:00Z

Links: CVE-2022-23596 - Bugzilla