UBUNTU-CVE-2020-10809

An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of Service...

PT-2020-6977 · Hdf5 +3 · Hdf5 +3

Name of the Vulnerable Software and Affected Versions: HDF5 versions prior to 1.12.0 Description: A heap-based buffer overflow exists in the function Decompress located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary, allowing an attacker to cause Denial of...

bzip2 buffer overflow vulnerability

bzip2 is an open source compression/decompression application. A buffer error vulnerability exists in BZ2decompress in the decompress.c file in bzip2 1.0.6 and earlier versions. The vulnerability stems from a networked system or product performing operations in memory without properly validating...

Lizard Denial of Service Vulnerability

Lizard formerly known as LZ5 is a lossless compression software package. A security vulnerability exists in the 'LizarddecompressLIZv1' function lib/lizarddecompressliz.h file in Lizard version 1.0 and LZ5 version 2.0, which stems from the program's failure to correctly detect buffer size. A remo...

shoco API 'shoco_decompress' function denial of service vulnerability

shoco is a C language library for string compression, of which the API is a programming interface. A security vulnerability exists in the 'shocodecompress' function of the API in shoco 2017-07-17 and earlier versions. A remote attacker can exploit this vulnerability with malformed compressed data...

CVE-2017-7772

Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::decompress function...

The vulnerability of the Wireshark Network Protocol Analyzer software allows a remote attacker to compromise the accessibility of protected information.

A vulnerability exists in the SnifferDecompress function in the wireshark/Wireshark DOS sniffer processing module, located in the wiretap/ngsniffer.c file. This vulnerability arises due to improper handling of empty input data. Exploiting this vulnerability allows malicious individuals operating...

PT-2016-3293

Name of the Vulnerable Software and Affected Versions bzip2 versions 1.0.6 and earlier Description The issue is related to an out-of-bounds write in the BZ2 decompress function in decompress.c when there are many selectors. This can lead to memory corruption, resulting in a denial of service and/...

wireshark: DOS Sniffer file parser flaw (wnpa-sec-2014-19)

The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not prevent data overwrites during copy operations, which allows remote attackers to cause a denial of service application crash via a crafted file...

Mandriva Update for busybox MDVSA-2012:129-1 (busybox)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

ncompress: .bss buffer underflow in decompression

The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...

ncompress: .bss buffer underflow in decompression

The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...

bzip2: integer overflow flaw in BZ2_decompress

Integer overflow in the BZ2decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted compressed file...

bzip2: integer overflow flaw in BZ2_decompress

Integer overflow in the BZ2decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted compressed file...

CVE-2008-6703

Stack-based buffer overflow in the IPureServer::Recieve function in S.T.A.L.K.E.R.: Shadow of Chernobyl 1.0006 and earlier allows remote attackers to execute arbitrary code via a compressed 0x39 packet, which is decompressed by the NETCompressor::Decompress function...

Stack overflow

Stack-based buffer overflow in the IPureServer::Recieve function in S.T.A.L.K.E.R.: Shadow of Chernobyl 1.0006 and earlier allows remote attackers to execute arbitrary code via a compressed 0x39 packet, which is decompressed by the NETCompressor::Decompress function...

CVE-2008-6703

Stack-based buffer overflow in the IPureServer::Recieve function in S.T.A.L.K.E.R.: Shadow of Chernobyl 1.0006 and earlier allows remote attackers to execute arbitrary code via a compressed 0x39 packet, which is decompressed by the NETCompressor::Decompress function...

CVE-2008-6704

The CVE-2008-6704 entry concerns an integer overflow in the NET_Compressor::Decompress function of S.T.A.L.K.E.R.: Shadow of Chernobyl (versions 1.0006 and earlier). A remote attacker can trigger a denial of service (server crash) by sending a crafted packet with a 0xC1 value that contains no com...

CVE-2006-1168

The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...

DEBIAN-CVE-2006-1168

The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...