Lucene search
K

78 matches found

AlpineLinux
AlpineLinux
added 2026/06/10 9:40 p.m.12 views

CVE-2026-46521

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, when using LZMA compression in the MIFF encoder an out of bounds write can occur due to a missing check. This issue has been patched in versions 6.9.13-48 and...

5.5CVSS5.3AI score0.00111EPSS
Exploits0
OSV
OSV
added 2026/05/18 8:36 p.m.44 views

GHSA-JCQP-6R6F-3MFX ImageMagick: Heap Buffer Over-Write in MIFF encoder when using LZMA compression

When using LZMA compression in the MIFF encoder an out of bounds write can occur due to a missing check...

5.5CVSS5.8AI score0.00111EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.11 views

PT-2026-41802

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An out-of-bounds write can occur when using LZMA compression in the MIFF encoder due to a missing check. An out-of-bounds write is a memory corruption issue wher...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References125
EUVD
EUVD
added 2026/04/30 5:36 a.m.7 views

EUVD-2026-26340

Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00146EPSS
Exploits1References2
OSV
OSV
added 2026/04/25 12:45 a.m.21 views

CLEANSTART-2026-HQ78610 Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java

Multiple security vulnerabilities affect the trino package. Aircompressor is a library with ports of the Snappy, LZO, LZ4, and Zstandard compression algorithms to Java. See references for individual vulnerability details...

9.8CVSS7.2AI score0.01945EPSS
Exploits4References30
OSV
OSV
added 2026/04/11 2:3 p.m.6 views

OESA-2026-1853 xz security update

XZ Utils is free general-purpose data compression software with a high compression ratio. XZ Utils were written for POSIX-like systems, but also work on some not-so-POSIX systems. XZ Utils are the successor to LZMA Utils. Security Fixes: XZ Utils provide a general-purpose data-compression library...

6.3CVSS6AI score0.00351EPSS
Exploits0References2
OSV
OSV
added 2026/04/08 4:1 p.m.6 views

JLSEC-2026-62

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in...

10CVSS5.8AI score0.85974EPSS
Exploits40References59
Fedora
Fedora
added 2026/02/10 1:34 a.m.8 views

[SECURITY] Fedora 43 Update: rust-weezl-0.1.12-3.fc43

Fast LZW compression and decompression...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
Fedora
Fedora
added 2025/12/18 1:12 a.m.7 views

[SECURITY] Fedora 42 Update: brotli-1.2.0-1.fc42

Brotli is a generic-purpose lossless compression algorithm that compresses da ta using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the be st currently available general-purpose compression methods. ...

7.5CVSS6.9AI score0.00509EPSS
Exploits0
Fedora
Fedora
added 2025/12/12 1:34 a.m.9 views

[SECURITY] Fedora 43 Update: brotli-1.2.0-1.fc43

Brotli is a generic-purpose lossless compression algorithm that compresses da ta using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the be st currently available general-purpose compression methods. ...

8.9CVSS6.9AI score0.00633EPSS
Exploits0
CNNVD
CNNVD
added 2025/11/26 12:0 a.m.3 views

pypdf 安全漏洞

pypdf is py-pdf open source a free open source pure python PDF library . It is able to split, merge, crop and convert pages of a PDF file. pypdf versions prior to 6.4.0 has a security vulnerability , the vulnerability stems from the LZWDecode filter parsing PDF content streams may lead to excessi...

8.7CVSS6.5AI score0.00313EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-17576

Malicious code in bioql PyPI...

6.6CVSS5.3AI score0.00163EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/09/28 12:0 a.m.1 views

Vulnerabilities of crypto modules, lzo in Linux kernel, which allow attackers to compromise data integrity and cause service failures

The vulnerability of crypto modules and LZO kernels in the Linux operating system relates to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to compromise data integrity and cause service failures...

6.1CVSS6.8AI score0.00158EPSS
Exploits0References16Affected Software6
OSV
OSV
added 2025/06/17 3:15 p.m.9 views

AZL-64079 CVE-2025-6199 affecting package gdk-pixbuf2 for versions less than 2.42.10-4

A flaw was found in the GIF parser of GdkPixbuf’s LZW decoder. When an invalid symbol is encountered during decompression, the decoder sets the reported output size to the full buffer length rather than the actual number of written bytes. This logic error results in uninitialized sections of the...

3.3CVSS6AI score0.00149EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/06/10 2:18 a.m.1 views

SUSE CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...

4.4CVSS6.7AI score0.00163EPSS
Exploits0References8
NVD
NVD
added 2025/06/09 8:15 p.m.13 views

CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...

6.6CVSS0.00163EPSS
Exploits0References4
OSV
OSV
added 2025/06/09 8:15 p.m.2 views

DEBIAN-CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...

6.6CVSS6.4AI score0.00163EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/06/09 7:49 p.m.3 views

CVE-2025-5915

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...

6.6CVSS6.6AI score0.00163EPSS
Exploits0References5
CVE
CVE
added 2025/06/09 7:49 p.m.112 views

CVE-2025-5915

CVE-2025-5915 refers to a heap-based memory issue in the libarchive library caused by a filter block size potentially exceeding the LZSS window, which can lead to reading beyond the allocated buffer and cause crashes or memory disclosure. The connected documents indicate this affects libarchive a...

6.6CVSS6.7AI score0.00163EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/06/09 7:49 p.m.2 views

CVE-2025-5915 Libarchive: heap buffer over read in copy_from_lzss_window() at archive_read_support_format_rar.c

A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a filter block potentially exceeding the Lempel-Ziv-Storer-Schieber LZSS window. This means the library may attempt to read beyond the allocated memory buffer, which can...

6.6CVSS6.4AI score0.00163EPSS
Exploits0References8
Rows per page
Query Builder