41 matches found
PT-2022-37250 · Git +1 · C-Blosc2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-use-after-free READ 4 crash type. The crash state involves functions such as ndlz4 decompress, blosc d, and do job...
PT-2022-37201 · Blosc2 · Blosc2
Name of the Vulnerable Software and Affected Versions: blosc2 affected versions not specified Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the do job function, blosc compress context, and blosc2 compress ctx. Recommendations: A...
Mageia: Security Advisory (MGASA-2021-0051)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OSV-2021-271 Heap-buffer-overflow in blosc_run_decompression_with_context
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30193 Crash type: Heap-buffer-overflow READ 1 Crash state: bloscrundecompressionwithcontext blosc2decompress fuzzdecompresschunk.c...
openSUSE Security Update : blosc (openSUSE-2020-2337)
This update for blosc fixes the following issues : Update to version 1.20.1 boo1179914 CVE-2020-29367 : - More saftey checks have been implemented so that potential flaws discovered by new fuzzers in OSS-Fuzzer are fixed now - BloscLZ updated to 2.3.0. Expect better compression ratios for faster...
MGASA-2021-0051 Updated blosc packages fix a security vulnerability
A heap-based buffer overflow vulnerability was found in the blosc library. Depending on how the library is used, if there is a lack of space to write compressed data, an attacker might exploit this flaw to crash the program or potentially execute arbitrary code CVE-2020-29367...
Updated blosc packages fix a security vulnerability
A heap-based buffer overflow vulnerability was found in the blosc library. Depending on how the library is used, if there is a lack of space to write compressed data, an attacker might exploit this flaw to crash the program or potentially execute arbitrary code CVE-2020-29367...
OPENSUSE-SU-2020:2337-1 Security update for blosc
This update for blosc fixes the following issues: Update to version 1.20.1 boo1179914 CVE-2020-29367: More saftey checks have been implemented so that potential flaws discovered by new fuzzers in OSS-Fuzzer are fixed now BloscLZ updated to 2.3.0. Expect better compression ratios for faster codecs...
Security update for blosc (moderate)
openSUSE Security Update: Security update for blosc Announcement ID: openSUSE-SU-2020:2337-1 Rating: moderate References: 1174075 1179914 Cross-References: CVE-2020-29367 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 An update...
OSV-2020-2251 Heap-buffer-overflow in blosc_run_decompression_with_context
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28392 Crash type: Heap-buffer-overflow READ 1 Crash state: bloscrundecompressionwithcontext blosc2decompressctx framedecompresschunk...
CVE-2020-29367
A heap-based buffer overflow vulnerability was found in the blosc library. Depending on how the library is used, if there is a lack of space to write compressed data, an attacker can exploit this flaw to crash the program or potentially execute arbitrary code. The highest threat from this...
CVE-2020-29367
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...
CVE-2020-29367
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...
Heap overflow
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...
PYSEC-2020-343
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...
PYSEC-2020-343
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...
CVE-2020-29367
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...
CVE-2020-29367
CVE-2020-29367 affects Blosc C-Blosc2 (Blosc devel up to version 2.0.0.beta.5). A heap-based buffer overflow occurs when there is insufficient space to write compressed data, potentially impacting programs that rely on Blosc for compression. The vulnerability is described with a high impact on co...
Blosc C-Blosc Buffer Error Vulnerability
Blosc C-Blosc2 is a code library from the Blosc team that enables deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, speeding up memory-bound computations. The software supports BloscLZ, a compression program based on FastLZ, LZ...
OSV-2020-1016 UNKNOWN READ in blosc_run_decompression_with_context
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23717 Crash type: UNKNOWN READ Crash state: bloscrundecompressionwithcontext bloscdecompress fuzzdecompress.c...