11 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-27347
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in lzmadecompressbuf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service DoS via a crafted compressed file...
CVE-2021-27345
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service DOS via a crafted compressed file...
CVE-2021-27347
Use after free in lzmadecompressbuf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service DoS via a crafted compressed file...
Double free
Use after free in lzmadecompressbuf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service DoS via a crafted compressed file...
Null pointer dereference
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service DOS via a crafted compressed file...
CVE-2021-27347
Use after free in lzmadecompressbuf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service DoS via a crafted compressed file...
CVE-2021-27345
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service DOS via a crafted compressed file...
CVE-2021-27345
CVE-2021-27345 relates to lrzip (Irzip) 0.631, where a null pointer dereference in ucompthread() in stream.c can cause a denial of service via a crafted ZIP file. The vulnerability affects lrzip packages across multiple distros; fixed versions are provided in Debian security advisories (e.g., DSA...
CVE-2021-27345
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service DOS via a crafted compressed file...
CVE-2021-27345
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service DOS via a crafted compressed file...
CVE-2021-27347
CVE-2021-27347 affects lrzip 0.631 (Irzip) with a use-after-free in lzma_decompress_buf in stream.c, enabling DoS via a crafted compressed file. Debian and Ubuntu advisories indicate fixed packages: oldstable (buster) 0.631+git180528-1+deb10u1; stable (bullseye) 0.641-1+deb11u1. Other related CVE...