9 matches found
[SECURITY] [DLA 4576-1] p7zip security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4576-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler May 11, 2026 https://wiki.debian.org/LTS -...
Linux Distros Unpatched Vulnerability : CVE-2023-52169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The...
Medium: p7zip
Issue Overview: The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512i-2, for i=9, i=10, i=11, etc. CVE-2023-52168 The NtfsHandler.cpp NTF...
Amazon Linux 2023 : p7zip, p7zip-plugins (ALAS2023-2024-705)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-705 advisory. The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buff...
openSUSE Security Advisory (SUSE-SU-2024:2625-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : p7zip (SUSE-SU-2024:2625-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2625-1 advisory. - CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be...
SUSE: Security Advisory (SUSE-SU-2024:2475-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:2475-1 Security update for p7zip
This update for p7zip fixes the following issues: - CVE-2023-52168: Fixed heap-based buffer overflow in the NTFS handler allows two bytes to be overwritten at multiple offsets bsc1227358 - CVE-2023-52169: Fixed out-of-bounds read in NTFS handler bsc1227359...
CVE-2023-52169
CVE-2023-52169 affects 7-Zip NTFS handling: the NtfsHandler.cpp reads beyond allocated buffers, which could cause information disclosure by presenting extra bytes as part of a filename in a file system image. The vulnerability is in 7-Zip before version 24.01 (for 7zz) and has been acknowledged i...