Ckolivas Lrzip vulnerabilities
23 known vulnerabilities affecting ckolivas/lrzip.
Total CVEs
23
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM20
Vulnerabilities
Page 2 of 2
CVE-2017-8845MEDIUMCVSS 5.5≥ 0, < 0.631+git180517-12017-05-08
CVE-2017-8845 [MEDIUM] CVE-2017-8845: The lzo1x_decompress function in lzo1x_d
The lzo1x_decompress function in lzo1x_d.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted archive.
osv
CVE-2017-8842MEDIUMCVSS 5.5≥ 0, < 0.631+git180517-12017-05-08
CVE-2017-8842 [MEDIUM] CVE-2017-8842: The bufRead::get() function in libzpaq/libzpaq
The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted archive.
osv
CVE-2017-8846MEDIUMCVSS 5.5≥ 0, < 0.631+git180517-12017-05-08
CVE-2017-8846 [MEDIUM] CVE-2017-8846: The read_stream function in stream
The read_stream function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted archive.
osv
← Previous2 / 2