3 matches found
CVE-2022-33067
Lrzip v0.651 was discovered to contain multiple invalid arithmetic shifts via the functions getmagic in lrzip.c and Predictor::init in libzpaq/libzpaq.cpp. These vulnerabilities allow attackers to cause a Denial of Service via unspecified vectors...
Linux Distros Unpatched Vulnerability : CVE-2022-33067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lrzip v0.651 was discovered to contain multiple invalid arithmetic shifts via the functions getmagic in lrzip.c and Predictor::init in libzpaq/libzpaq.cpp. Thes...
CVE-2022-33067
CVE-2022-33067 affects lrzip v0.651, where multiple invalid arithmetic shifts in lrzip.c:get_magic and libzpaq/libzpaq.cpp:Predictor::init can lead to a Denial of Service. The Red Hat/NVD/CNVD entries confirm the vulnerability but do not provide concrete exploit details, affected versions beyond ...