AZL-79239 CVE-2026-3381 affecting package blosc 1.21.4-2

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

AZL-79262 CVE-2026-3381 affecting package blosc 1.21.6-1

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

AZL-77981 CVE-2026-27171 affecting package blosc 1.21.4-2

zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because x2nmodp can do right shifts within a loop that has no termination condition...

AZL-77985 CVE-2026-27171 affecting package blosc 1.21.6-1

zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because x2nmodp can do right shifts within a loop that has no termination condition...

Linux Distros Unpatched Vulnerability : CVE-2024-3204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in c-blosc2 up to 2.13.2 and classified as critical. Affected by this vulnerability is the function ndlz4decompress of the file...

UBUNTU-CVE-2025-29476

Buffer Overflow vulnerability in compresschunkfuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before...

CVE-2023-45853 affecting package blosc for versions less than 1.21.6-1

CVE-2023-45853 affecting package blosc for versions less than 1.21.6-1. An upgraded version of the package is available that resolves this issue...

OPENSUSE-SU-2024:10655-1 blosc-devel-1.21.0-1.3 on GA media

These are all security issues fixed in the blosc-devel-1.21.0-1.3 package on the GA media of openSUSE Tumbleweed...

Blosc C-Blosc2 安全漏洞

Blosc C-Blosc2 is a code library from the Blosc team that allows deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, to speed up memory-bound computations, and the software supports BloscLZ, a compression program based on FastLZ,...

PT-2024-24368 · C-Blosc2 · C-Blosc2

Name of the Vulnerable Software and Affected Versions: c-blosc2 versions up to 2.13.2 Description: A critical issue was found in the ndlz8 decompress function of the file /src/c-blosc2/plugins/codecs/ndlz/ndlz8x8.c. This issue leads to a heap-based buffer overflow. The attack can be launched...

Blosc C-Blosc2 安全漏洞

Blosc C-Blosc2 is a code library from the Blosc team that allows deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, to speed up memory-bound computations, and the software supports BloscLZ, a compression program based on FastLZ,...

Blosc C-Blosc2 Security Vulnerability

Blosc C-Blosc2 is a code library from the Blosc team that enables deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, to speed up memory-bound computations, and to support BloscLZ, a compression program based on FastLZ, LZ4 and...

Blosc C-Blosc2 Security Vulnerability

Blosc C-Blosc2 is a code library from the Blosc team that enables deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, speeding up memory-bound computations. The software supports BloscLZ, a compression program based on FastLZ, LZ...

PT-2023-25821 · C-Blosc2 · C-Blosc2

Name of the Vulnerable Software and Affected Versions: C-blosc2 versions prior to 2.9.3 Description: The issue is related to a NULL pointer dereference in the function zfp prec decompress at zfp/blosc2-zfp.c. This indicates a problem where the code attempts to access memory through a pointer that...

PT-2023-25824 · C-Blosc2 · C-Blosc2

Name of the Vulnerable Software and Affected Versions: C-blosc2 versions prior to 2.9.3 Description: The issue is related to a NULL pointer dereference in the function zfp rate decompress at zfp/blosc2-zfp.c. This indicates a problem where the code attempts to access memory through a null...

Blosc C-Blosc2 Security Vulnerability

Blosc C-Blosc2 is a code library from the Blosc team that enables deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, speeding up memory-bound computations. The software supports BloscLZ, a compression program based on FastLZ, LZ...

AZL-44127 CVE-2023-45853 affecting package blosc for versions less than 1.21.6-1

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

AZL-43609 CVE-2023-45853 affecting package blosc 1.21.4-2

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

SUSE CVE-2020-29367

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

PT-2022-36739 · Git +1 · C-Blosc2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow read issue is reported, with a crash type indicating a Heap-buffer-overflow READ 1. The crash state involves functions such as ndl...