CVE-2026-54417: CWE-190 Integer Overflow or Wraparound in rxi microtar
An integer overflow in the mtar_next() function in src/microtar.c in rxi microtar 0.1.0 allows a remote attacker to cause a denial of service (uncontrolled CPU consumption / infinite loop) via a crafted tar archive. mtar_next() computes the offset to the next record as round_up(h.size, 512) + sizeof(mtar_raw_header_t) using 32-bit arithmetic. When the header size field is a multiple of 512 in the range 0xFFFFFC01-0xFFFFFE00 (e.g. 0xFFFFFE00), the addition wraps to 0, so mtar_next() seeks to the current record position instead of advancing. As a result, mtar_find() and any loop that iterates entries with mtar_next() repeat indefinitely over the same record, hanging the process at 100% CPU with no recovery.
AI Analysis
Technical Summary
The vulnerability in rxi microtar 0.1.0 arises from an integer overflow in the mtar_next() function, which calculates the offset to the next tar archive record as round_up(h.size, 512) + sizeof(mtar_raw_header_t) using 32-bit arithmetic. When the header size field is a multiple of 512 within the range 0xFFFFFC01 to 0xFFFFFE00, the addition overflows and wraps to zero. Consequently, mtar_next() seeks to the current record position instead of advancing, causing mtar_find() and loops iterating entries with mtar_next() to repeat indefinitely over the same record. This leads to a denial of service via 100% CPU consumption with no recovery.
Potential Impact
An attacker can cause a denial of service by supplying a crafted tar archive that triggers the integer overflow, resulting in an infinite loop and uncontrolled CPU usage. There is no impact on confidentiality or integrity reported. The vulnerability affects availability by hanging the process indefinitely.
Mitigation Recommendations
No official patch or remediation is currently available for this vulnerability. Users should monitor the vendor advisory for updates. Until a fix is released, avoid processing untrusted tar archives with rxi microtar version 0.1.0 to prevent denial of service.
CVE-2026-54417: CWE-190 Integer Overflow or Wraparound in rxi microtar
Description
An integer overflow in the mtar_next() function in src/microtar.c in rxi microtar 0.1.0 allows a remote attacker to cause a denial of service (uncontrolled CPU consumption / infinite loop) via a crafted tar archive. mtar_next() computes the offset to the next record as round_up(h.size, 512) + sizeof(mtar_raw_header_t) using 32-bit arithmetic. When the header size field is a multiple of 512 in the range 0xFFFFFC01-0xFFFFFE00 (e.g. 0xFFFFFE00), the addition wraps to 0, so mtar_next() seeks to the current record position instead of advancing. As a result, mtar_find() and any loop that iterates entries with mtar_next() repeat indefinitely over the same record, hanging the process at 100% CPU with no recovery.
CVSS v3.1
Score 7.5high
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability in rxi microtar 0.1.0 arises from an integer overflow in the mtar_next() function, which calculates the offset to the next tar archive record as round_up(h.size, 512) + sizeof(mtar_raw_header_t) using 32-bit arithmetic. When the header size field is a multiple of 512 within the range 0xFFFFFC01 to 0xFFFFFE00, the addition overflows and wraps to zero. Consequently, mtar_next() seeks to the current record position instead of advancing, causing mtar_find() and loops iterating entries with mtar_next() to repeat indefinitely over the same record. This leads to a denial of service via 100% CPU consumption with no recovery.
Potential Impact
An attacker can cause a denial of service by supplying a crafted tar archive that triggers the integer overflow, resulting in an infinite loop and uncontrolled CPU usage. There is no impact on confidentiality or integrity reported. The vulnerability affects availability by hanging the process indefinitely.
Mitigation Recommendations
No official patch or remediation is currently available for this vulnerability. Users should monitor the vendor advisory for updates. Until a fix is released, avoid processing untrusted tar archives with rxi microtar version 0.1.0 to prevent denial of service.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- TuranSec
- Date Reserved
- 2026-06-13T16:39:46.122Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a32a8a20b89be6888635f16
Added to database: 6/17/2026, 2:01:06 PM
Last enriched: 6/17/2026, 2:16:03 PM
Last updated: 6/17/2026, 4:35:48 PM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.