Lucene search
+L

41 matches found

Positive Technologies
Positive Technologies
added 2022/09/06 12:0 a.m.2 views

PT-2022-37250 · Git +1 · C-Blosc2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-use-after-free READ 4 crash type. The crash state involves functions such as ndlz4 decompress, blosc d, and do job...

6.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/08/20 12:0 a.m.7 views

PT-2022-37201 · Blosc2 · Blosc2

Name of the Vulnerable Software and Affected Versions: blosc2 affected versions not specified Description: The issue is related to a heap-buffer-overflow write error. Technical details about the crash include the do job function, blosc compress context, and blosc2 compress ctx. Recommendations: A...

6.9AI score
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2021-0051)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.8AI score0.01176EPSS
Exploits0References4
OSV
OSV
added 2021/02/04 12:0 a.m.8 views

OSV-2021-271 Heap-buffer-overflow in blosc_run_decompression_with_context

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30193 Crash type: Heap-buffer-overflow READ 1 Crash state: bloscrundecompressionwithcontext blosc2decompress fuzzdecompresschunk.c...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/01/25 12:0 a.m.25 views

openSUSE Security Update : blosc (openSUSE-2020-2337)

This update for blosc fixes the following issues : Update to version 1.20.1 boo1179914 CVE-2020-29367 : - More saftey checks have been implemented so that potential flaws discovered by new fuzzers in OSS-Fuzzer are fixed now - BloscLZ updated to 2.3.0. Expect better compression ratios for faster...

9.3CVSS7.6AI score0.01176EPSS
Exploits0References4
OSV
OSV
added 2021/01/22 11:50 p.m.9 views

MGASA-2021-0051 Updated blosc packages fix a security vulnerability

A heap-based buffer overflow vulnerability was found in the blosc library. Depending on how the library is used, if there is a lack of space to write compressed data, an attacker might exploit this flaw to crash the program or potentially execute arbitrary code CVE-2020-29367...

9.3CVSS7.9AI score0.01176EPSS
Exploits0References3
Mageia
Mageia
added 2021/01/22 11:50 p.m.62 views

Updated blosc packages fix a security vulnerability

A heap-based buffer overflow vulnerability was found in the blosc library. Depending on how the library is used, if there is a lack of space to write compressed data, an attacker might exploit this flaw to crash the program or potentially execute arbitrary code CVE-2020-29367...

9.3CVSS3.7AI score0.01176EPSS
Exploits0References2
OSV
OSV
added 2020/12/26 5:22 p.m.5 views

OPENSUSE-SU-2020:2337-1 Security update for blosc

This update for blosc fixes the following issues: Update to version 1.20.1 boo1179914 CVE-2020-29367: More saftey checks have been implemented so that potential flaws discovered by new fuzzers in OSS-Fuzzer are fixed now BloscLZ updated to 2.3.0. Expect better compression ratios for faster codecs...

9.3CVSS7.8AI score0.01176EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2020/12/26 12:0 a.m.27 views

Security update for blosc (moderate)

openSUSE Security Update: Security update for blosc Announcement ID: openSUSE-SU-2020:2337-1 Rating: moderate References: 1174075 1179914 Cross-References: CVE-2020-29367 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 An update...

9.3CVSS7.6AI score0.01176EPSS
Exploits0References2
OSV
OSV
added 2020/12/09 12:0 a.m.9 views

OSV-2020-2251 Heap-buffer-overflow in blosc_run_decompression_with_context

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28392 Crash type: Heap-buffer-overflow READ 1 Crash state: bloscrundecompressionwithcontext blosc2decompressctx framedecompresschunk...

7.2AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/12/01 5:0 p.m.21 views

CVE-2020-29367

A heap-based buffer overflow vulnerability was found in the blosc library. Depending on how the library is used, if there is a lack of space to write compressed data, an attacker can exploit this flaw to crash the program or potentially execute arbitrary code. The highest threat from this...

9.3CVSS3.9AI score0.01176EPSS
Exploits0References3
NVD
NVD
added 2020/11/27 8:15 p.m.28 views

CVE-2020-29367

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

9.3CVSS7.8AI score0.01176EPSS
Exploits0References2
OSV
OSV
added 2020/11/27 8:15 p.m.22 views

CVE-2020-29367

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

7.8CVSS7.6AI score
Exploits0References2
Prion
Prion
added 2020/11/27 8:15 p.m.17 views

Heap overflow

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

9.3CVSS7.8AI score0.01176EPSS
Exploits0References2Affected Software1
PyPA
PyPA
added 2020/11/27 8:15 p.m.8 views

PYSEC-2020-343

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

9.3CVSS7.4AI score0.01176EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2020/11/27 8:15 p.m.6 views

PYSEC-2020-343

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

7.8CVSS6.1AI score0.01176EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/11/27 7:7 p.m.30 views

CVE-2020-29367

blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data...

7.8AI score0.01176EPSS
Exploits0References2
CVE
CVE
added 2020/11/27 7:7 p.m.180 views

CVE-2020-29367

CVE-2020-29367 affects Blosc C-Blosc2 (Blosc devel up to version 2.0.0.beta.5). A heap-based buffer overflow occurs when there is insufficient space to write compressed data, potentially impacting programs that rely on Blosc for compression. The vulnerability is described with a high impact on co...

9.3CVSS7.7AI score0.01176EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2020/11/27 12:0 a.m.9 views

Blosc C-Blosc Buffer Error Vulnerability

Blosc C-Blosc2 is a code library from the Blosc team that enables deep compression of binary data. The goal of the software is to reduce the size of large datasets on disk or in memory, speeding up memory-bound computations. The software supports BloscLZ, a compression program based on FastLZ, LZ...

9.3CVSS7.4AI score0.01176EPSS
Exploits0References4
OSV
OSV
added 2020/07/22 9:49 p.m.9 views

OSV-2020-1016 UNKNOWN READ in blosc_run_decompression_with_context

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23717 Crash type: UNKNOWN READ Crash state: bloscrundecompressionwithcontext bloscdecompress fuzzdecompress.c...

7.2AI score
Exploits0References1
Rows per page
Query Builder