2 matches found
GLSA-201708-08 : bzip2: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201708-08 bzip2: Denial of Service A use-after-free flaw was found in bzip2recover, leading to a null pointer dereference, or a write to a closed file descriptor. Please review the CVE identifier referenced below for details. Impa...
CVE-2016-3189
CVE-2016-3189 is a use-after-free in bzip2recover within bzip2 1.0.6 that allows remote denial of service (crash) via a crafted bzip2 file, caused by block ends set to before the start of the block. The vulnerability is confirmed across multiple references tied to bzip2 and was addressed by vendo...