CVE-2026-43623

HIGH 8.8

microtar 0.1.0 Stack-Based Buffer Overflow via raw_to_header()

CVSS Score

8.8

EPSS Score

0.0%

EPSS Percentile

12th

microtar through 0.1.0 contains a stack-based buffer overflow vulnerability in the raw_to_header() function in src/microtar.c that allows attackers to corrupt adjacent stack memory by supplying a crafted TAR archive with non-null-terminated name or linkname fields. The function uses strcpy() to copy 100-byte ustar format fields that lack null terminators, causing writes of up to 355 bytes into a 100-byte destination buffer when mtar_open(), mtar_find(), or mtar_read_header() process attacker-supplied TAR archives.

CWE	CWE-121
Vendor	rxi
Product	microtar
Published	Jun 1, 2026
Last Updated	Jun 2, 2026

Stay Ahead of the Next One

Get instant alerts for rxi microtar

Be the first to know when new high vulnerabilities affecting rxi microtar are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

rxi / microtar

0 ≤ 0.1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/rxi/microtar/issues/28 github.com: https://github.com/rxi/microtar/issues/29 github.com: https://github.com/rxi/microtar/issues/30 vulncheck.com: https://www.vulncheck.com/advisories/microtar-stack-based-buffer-overflow-via-raw-to-header

Credits

Byambadalai Sumiya (@ByamB4) Saidakbarxon Maxsudxonov mms (@3291710458)