Lucene search

MitreCVELIST:CVE-2020-25467

HistoryJun 10, 2021 - 3:41 p.m.

CVE-2020-25467

2021-06-1015:41:29

mitre

www.cve.org

null pointer dereference

irzip 0.621

denial of service

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

35.4%

JSON

A null pointer dereference was discovered lzo_decompress_buf in stream.c in Irzip 0.621 which allows an attacker to cause a denial of service (DOS) via a crafted compressed file.

References

bugs.launchpad.net/ubuntu/+source/lrzip/+bug/1893641

github.com/ckolivas/lrzip/issues/163

lists.debian.org/debian-lts-announce/2022/04/msg00012.html