PT-2026-7262

Name of the Vulnerable Software and Affected Versions lrzip versions up to 0.651 Description A flaw exists in lrzip that involves a use-after-free condition within the lzma decompress buf function located in the stream.c file. Local access is required for exploitation. The exploit has been public...

DEBIAN-CVE-2022-26291

lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaqdecompressbuf and clearrulist. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted Irz file...

Irzip 资源管理错误漏洞

Irzip is a compression utility that excels at compressing large files. A post-release reuse vulnerability exists in the lzmadecompressbuf function in stream.c in Irzip version 0.631, which can be exploited by an attacker to cause a denial of service via specially crafted compressed files...

PT-2020-6423 · Lrzip +3 · Lrzip +3

Name of the Vulnerable Software and Affected Versions: Lrzip version 0.621 Description: A null pointer dereference was discovered in the lzo decompress buf function in stream.c, which allows an attacker to cause a denial of service DOS via a crafted compressed file. This issue can be exploited by...

Long Range Zip 'lzma_decompress_buf' function memory misreference vulnerability

Long Range Zip aka lrzip is an open source compression utility for large files. A memory misreference vulnerability exists in the 'lzmadecompressbuf' function in the stream.c file in Long Range Zip version 0.631. A remote attacker could exploit this vulnerability to cause a denial of service...