Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2026/01/09 10:42 a.m.4 views

CVE-2022-26291

lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaqdecompressbuf and clearrulist. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted Irz file...

5.5CVSS7AI score0.00853EPSS
Exploits1References1
openvas
openvas
added 2023/02/03 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-5840-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.01897EPSS
Exploits6References2
nessus
nessus
added 2023/02/02 12:0 a.m.28 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Long Range ZIP vulnerabilities (USN-5840-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5840-1 advisory. It was discovered that Long Range ZIP incorrectly handled pointers. If a user or an automated system were tricked int...

9.8CVSS7.3AI score0.01897EPSS
Exploits6References7
debian
debian
added 2022/05/24 5:48 p.m.117 views

[SECURITY] [DSA 5145-1] lrzip security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5145-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 24, 2022 https://www.debian.org/security/faq -...

9.8CVSS6.9AI score0.01897EPSS
Exploits6
debian
debian
added 2022/04/13 1:47 p.m.65 views

[SECURITY] [DLA 2981-1] lrzip security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2981-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler April 13, 2022 https://wiki.debian.org/LTS -...

5.5CVSS6.7AI score0.01327EPSS
Exploits5
nvd
nvd
added 2022/03/28 10:15 p.m.25 views

CVE-2022-26291

lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaqdecompressbuf and clearrulist. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted Irz file...

5.5CVSS0.00853EPSS
Exploits1References3
cve
cve
added 2022/03/28 9:52 p.m.145 views

CVE-2022-26291

CVE-2022-26291 affects lrzip, where a concurrency use-after-free between zpaq_decompress_buf() and clear_rulist() can cause a Denial of Service via a crafted lrz file. The issue is confirmed in Debian/Ubuntu advisories: fixed in lrzip 0.641-1+deb11u1 (Bullseye) and related backports, with earlier...

5.5CVSS5.4AI score0.00853EPSS
Exploits1References3Affected Software1
alpinelinux
alpinelinux
added 2022/03/28 9:52 p.m.50 views

CVE-2022-26291

lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaqdecompressbuf and clearrulist. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted Irz file...

5.5CVSS5.6AI score0.00853EPSS
Exploits1
Rows per page
Query Builder