2 matches found
SUSE-SU-2026:2696-1 Security update for 7zip
This update for 7zip fixes the following issues Update to 26.01: - CVE-2026-48092: Information disclosure in 32-bit builds due to heap memory disclosure bsc1267858. - CVE-2026-48095: Heap buffer overflow via NTFS compressed stream buffer under-allocation bsc1267421. - CVE-2026-48101: Information...
PT-2026-46981
Name of the Vulnerable Software and Affected Versions 7-Zip versions 9.21 through 26.00 Description An off-by-one out-of-bounds read exists in the ParseDepedencyExpression function of the UEFI firmware image parser. The issue occurs because the function validates an attacker-controlled opcode byt...