78 matches found
CVE-2026-46521
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, when using LZMA compression in the MIFF encoder an out of bounds write can occur due to a missing check. This issue has been patched in versions 6.9.13-48 and...
GHSA-JCQP-6R6F-3MFX ImageMagick: Heap Buffer Over-Write in MIFF encoder when using LZMA compression
When using LZMA compression in the MIFF encoder an out of bounds write can occur due to a missing check...
PT-2026-41802
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An out-of-bounds write can occur when using LZMA compression in the MIFF encoder due to a missing check. An out-of-bounds write is a memory corruption issue wher...
EUVD-2026-26340
Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...
CLEANSTART-2026-HQ78610 Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java
Multiple security vulnerabilities affect the trino package. Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. See references for individual vulnerability details...
OESA-2026-1853 xz security update
XZ Utils is free general-purpose data compression software with a high compression ratio. XZ Utils were written for POSIX-like systems, but also work on some not-so-POSIX systems. XZ Utils are the successor to LZMA Utils. Security Fixes: XZ Utils provide a general-purpose data-compression library...
JLSEC-2026-62
Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in...
[SECURITY] Fedora 43 Update: rust-weezl-0.1.12-3.fc43
Fast LZW compression and decompression...
[SECURITY] Fedora 42 Update: brotli-1.2.0-1.fc42
Brotli is a generic-purpose lossless compression algorithm that compresses da ta using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the be st currently available general-purpose compression methods. ...
[SECURITY] Fedora 43 Update: brotli-1.2.0-1.fc43
Brotli is a generic-purpose lossless compression algorithm that compresses da ta using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the be st currently available general-purpose compression methods. ...
pypdf 安全漏洞
pypdf is py-pdf open source a free open source pure python PDF library . It is able to split, merge, crop and convert pages of a PDF file. pypdf versions prior to 6.4.0 has a security vulnerability , the vulnerability stems from the LZWDecode filter parsing PDF content streams may lead to excessi...
EUVD-2025-17576
Malicious code in bioql PyPI...
Vulnerabilities of crypto modules, lzo in Linux kernel, which allow attackers to compromise data integrity and cause service failures
The vulnerability of crypto modules and LZO kernels in the Linux operating system relates to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to compromise data integrity and cause service failures...
AZL-64079 CVE-2025-6199 affecting package gdk-pixbuf2 for versions less than 2.42.10-4
A flaw was found in the GIF parser of GdkPixbuf’s LZW decoder. When an invalid symbol is encountered during decompression, the decoder sets the reported output size to the full buffer length rather than the actual number of written bytes. This logic error results in uninitialized sections of the...
SUSE CVE-2025-5915
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...
CVE-2025-5915
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...
DEBIAN-CVE-2025-5915
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...
CVE-2025-5915
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...
CVE-2025-5915
CVE-2025-5915 refers to a heap-based memory issue in the libarchive library caused by a filter block size potentially exceeding the LZSS window, which can lead to reading beyond the allocated buffer and cause crashes or memory disclosure. The connected documents indicate this affects libarchive a...
CVE-2025-5915 Libarchive: heap buffer over read in copy_from_lzss_window() at archive_read_support_format_rar.c
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...