Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-4715HistoryJul 03, 2014 - 4:22 a.m.
CVE-2014-4715
2014-07-0304:22:00
Debian Security Bug Tracker
security-tracker.debian.org
11
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.006 Low
EPSS
Percentile
77.4%
Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows, which allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted Literal Run, a different vulnerability than CVE-2014-4611.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lz4 | < 0.0~r119-1 | lz4_0.0~r119-1_all.deb |
| Debian | 11 | all | lz4 | < 0.0~r119-1 | lz4_0.0~r119-1_all.deb |
| Debian | 10 | all | lz4 | < 0.0~r119-1 | lz4_0.0~r119-1_all.deb |
| Debian | 999 | all | lz4 | < 0.0~r119-1 | lz4_0.0~r119-1_all.deb |
| Debian | 13 | all | lz4 | < 0.0~r119-1 | lz4_0.0~r119-1_all.deb |
Related
attackerkb
attackerkb
The LZO/LZ4 Integer Overflow Summary
2014-07-03 00:00:00
prion
prion
Integer overflow
2014-07-03 04:22:00
Integer overflow
2014-07-03 04:22:00
f5
f5
K15516 : LZ4 compression vulnerability CVE-2014-4715
2014-08-18 00:00:00
K15513 : LZ4 vulnerability CVE-2014-4611
2014-08-18 00:00:00
SOL15516 - LZ4 compression vulnerability CVE-2014-4715
2014-08-18 00:00:00
debiancve
debiancve
CVE-2014-4611
2014-07-03 04:22:00
cve
cve
CVE-2014-4715
2014-07-03 04:22:00
CVE-2014-4611
2014-07-03 04:22:00
ubuntucve
ubuntucve
CVE-2014-4715
2014-07-03 00:00:00
CVE-2014-4611
2014-07-03 00:00:00
cisa
cisa
Vulnerabilities in LZO and LZ4 compression libraries
2014-07-21 00:00:00
mageia
mageia
Updated eet packages fix security vulnerability
2014-08-06 14:31:11
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0321)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-2287-1)
2014-07-21 00:00:00
Ubuntu: Security Advisory (USN-2289-1)
2014-07-21 00:00:00
nessus
nessus
openSUSE Security Update : eet (openSUSE-SU-2014:0924-1)
2014-07-24 00:00:00
Fedora 20 : kernel-3.15.4-200.fc20 (2014-8171)
2014-07-11 00:00:00
Fedora 19 : kernel-3.14.13-100.fc19 (2014-8487)
2014-07-26 00:00:00
hackerone
hackerone
Internet Bug Bounty: LZ4 Core
2014-06-26 20:11:22
securityvulns
securityvulns
[oss-security] LMS-2014-06-16-5: Linux Kernel LZ4
2014-06-28 00:00:00
[USN-2289-1] Linux kernel vulnerabilities
2014-07-21 00:00:00
Linux kernel multiple security vulnerabilities
2014-07-21 00:00:00
ubuntu
ubuntu
Linux kernel (Saucy HWE) vulnerabilities
2014-07-17 00:00:00
Linux kernel vulnerabilities
2014-07-17 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2014-07-17 00:00:00
thn
thn
20-Year Old Vulnerability in LZO Compression Algorithm Went to Planet Mars
2014-06-27 05:43:00
suse
suse
Security update for the Linux Kernel (important)
2014-12-21 13:04:41
fedora
fedora
[SECURITY] Fedora 19 Update: kernel-3.14.13-100.fc19
2014-07-25 10:08:51
[SECURITY] Fedora 20 Update: kernel-3.15.6-200.fc20
2014-07-20 03:26:08
[SECURITY] Fedora 20 Update: kernel-3.14.9-200.fc20
2014-06-30 10:29:23
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.006 Low
EPSS
Percentile
77.4%
Related for DEBIANCVE:CVE-2014-4715