CVE-2014-4715 — Integer Overflow or Wraparound in Collet LZ4

CWE-190 — Integer Overflow or Wraparound9 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 30.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

LZ4 Project LZ4 Yann Collet LZ4

Timeline

PublishedJul 3

Latest updateMay 17

Description

Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows, which allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted Literal Run, a different vulnerability than CVE-2014-4611.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDyann_collet/lz4r118

▶Debianlz4_project/lz4< 0.0~r119-1+3

🔴Vulnerability Details

GHSA

GHSA-c356-gp5w-pv9x: Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows,↗2022-05-17

▶

CVEList

CVE-2014-4715: Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows,↗2014-07-03

▶

OSV

CVE-2014-4715: Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows,↗2014-07-03

▶

📋Vendor Advisories

Red Hat

lz4: LZ4_decompress_generic() integer overflow (32-bit arches)↗2014-07-03

▶

Red Hat

lz4: LZ4_decompress_generic() integer overflow↗2014-06-26

▶

Debian

CVE-2014-4715: lz4 - Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate...↗2014

▶

💬Community

Bugzilla

CVE-2014-4715 kernel: lz4: LZ4_decompress_generic() integer overflow (32-bit arches) [fedora-all]↗2014-07-04

▶

Bugzilla

CVE-2014-4715 lz4: LZ4_decompress_generic() integer overflow (32-bit arches)↗2014-07-03

▶