CVE-2018-5747Use After Free in Range ZIP Project Long Range ZIP

CWE-416Use After FreeCWE-125Out-of-bounds Read13 documents8 sources
Severity
5.5MEDIUMNVD
EPSS
0.2%
top 56.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Ckolivas LrzipDebian LinuxLong Range ZIP Project Long Range ZIP
Timeline
PublishedJan 17
Latest updateMay 13

Description

In Long Range Zip (aka lrzip) 0.631, there is a use-after-free in the ucompthread function (stream.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

Debianckolivas/lrzip< 0.631+git180517-1+3

Also affects: Debian Linux 9.0

🔴Vulnerability Details

3
GHSA
GHSA-w22r-wrx7-522x: In Long Range Zip (aka lrzip) 02022-05-13
OSV
CVE-2018-5747: In Long Range Zip (aka lrzip) 02018-01-17
CVEList
CVE-2018-5747: In Long Range Zip (aka lrzip) 02018-01-17

📋Vendor Advisories

4
Ubuntu
Long Range ZIP vulnerabilities2021-12-09
Ubuntu
Long Range ZIP vulnerabilities2021-12-06
Red Hat
busybox: Out of bounds read in udhcp components resulting in information disclosure2019-01-09
Debian
CVE-2018-5747: lrzip - In Long Range Zip (aka lrzip) 0.631, there is a use-after-free in the ucompthrea...2018

💬Community

5
Bugzilla
CVE-2019-5747 busybox: Out of bounds read in udhcp components resulting in information disclosure2019-01-17
Bugzilla
CVE-2018-10119 libreoffice: Use-after-free in sdstor/stgstrms.cxx:StgSmallStrm class allows for denial of service with crafted document2018-04-20
Bugzilla
CVE-2018-5747 lrzip: use-after-free in ucompthread function in stream.c [fedora-26]2018-01-19
Bugzilla
CVE-2018-5747 lrzip: use-after-free in ucompthread function in stream.c [epel-all]2018-01-19
Bugzilla
CVE-2018-5747 lrzip: use-after-free in ucompthread function in stream.c2018-01-19
CVE-2018-5747 — Use After Free | cvebase