Lucene search
K

70 matches found

OSV
OSV
added 2023/04/06 5:15 a.m.2 views

UBUNTU-CVE-2023-29419

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a bz3decodeblock out-of-bounds read...

6.5CVSS5.8AI score0.00888EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/04/06 12:0 a.m.15 views

CVE-2023-29420

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an invalid memmove in bz3decodeblock...

7.6AI score0.00888EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/04/06 12:0 a.m.5 views

CVE-2023-29418

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is an xwrite out-of-bounds read...

7.2AI score0.00888EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/04/06 12:0 a.m.3 views

PT-2023-22243 · Bzip3 · Bzip3

Name of the Vulnerable Software and Affected Versions: bzip3 versions prior to 1.3.0 Description: An issue was discovered in libbzip3.a in bzip3. A denial of service process hang can occur with a crafted archive because bzip3 does not follow the required procedure for interacting with libsais...

6.5CVSS6.2AI score0.0089EPSS
Exploits1References13
Vulnrichment
Vulnrichment
added 2023/04/06 12:0 a.m.6 views

CVE-2023-29416

An issue was discovered in libbzip3.a in bzip3 before 1.3.0. A bz3decodeblock out-of-bounds write can occur with a crafted archive because bzip3 does not follow the required procedure for interacting with libsais...

6.5AI score0.00902EPSS
Exploits1References6
GitLab Advisory Database
GitLab Advisory Database
added 2023/04/06 12:0 a.m.31 views

Out-of-bounds Read

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is an xwrite out-of-bounds read...

6.5CVSS6.9AI score0.00888EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/04/06 12:0 a.m.19 views

Out-of-bounds Read

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a bz3decodeblock out-of-bounds read...

6.5CVSS7.3AI score0.00888EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/04/06 12:0 a.m.21 views

Improper Restriction of Operations within the Bounds of a Memory Buffer

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an invalid memmove in bz3decodeblock...

6.5CVSS7.3AI score0.00888EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/04/06 12:0 a.m.23 views

Out-of-bounds Write

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is an out-of-bounds write in bz3decodeblock...

8.8CVSS8.4AI score0.00916EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/04/06 12:0 a.m.57 views

CVE-2023-29416

The CVE-2023-29416 issue affects libbzip3.a in bzip3 up to version 1.3.0, where a bz3_decode_block out-of-bounds write can occur with crafted archives due to non-adherence to the libsais interaction procedure. Reported impact includes HIGH availability risk with otherwise limited confidentiality/...

6.5CVSS7.1AI score0.00902EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/06 12:0 a.m.8 views

CVE-2023-29421

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is an out-of-bounds write in bz3decodeblock...

8.7AI score0.00916EPSS
Exploits1References5
CVE
CVE
added 2023/04/06 12:0 a.m.61 views

CVE-2023-29415

CVE-2023-29415 affects libbzip3.a in bzip3 prior to version 1.3.0. The issue can cause a denial of service (process hang) when handling a crafted archive, due to improper interaction with libsais. Affects bzip3 users compiling or distributing the library prior to 1.3.0. The vulnerability increase...

6.5CVSS6.9AI score0.0089EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2023/04/06 12:0 a.m.115 views

CVE-2023-29421

Technical details of CVE-2023-29421 are only in the initial description; no connected documents with concrete technical details are provided. Monitor for updates.

8.8CVSS8.5AI score0.00916EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/06 12:0 a.m.4 views

PT-2023-22245 · Bzip3 +1 · Bzip3 +1

Name of the Vulnerable Software and Affected Versions: bzip3 version 1.2.2 Description: An issue was discovered in libbzip3.a where there is a bz3 decompress out-of-bounds read in certain situations. This occurs when buffers passed to bzip3 do not contain enough space to be filled with decompress...

6.5CVSS6.7AI score0.008EPSS
Exploits1References16
CVE
CVE
added 2023/04/06 12:0 a.m.67 views

CVE-2023-29419

CVE-2023-29419 affects the library in the bzip3 project: specifically, the component libbzip3.a in bzip3 prior to 1.2.3, where the function bz3_decode_block can read out of bounds. The vulnerability is documented with a CVSS v3.1 base score of 6.5 (Medium), with network access, no privileges requ...

6.5CVSS7.1AI score0.00888EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2023/04/06 12:0 a.m.63 views

CVE-2023-29418

CVE-2023-29418 concerns libbzip3.a in bzip3 up to version 1.2.2 (fixed in 1.2.3). The issue is an xwrite out-of-bounds read in the library, yielding a high impact on availability per the CVSS vector. Documents from OSV and Nessus corroborate the vulnerability description. Affected component/file:...

6.5CVSS6.5AI score0.00888EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/06 12:0 a.m.6 views

CVE-2023-29419

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a bz3decodeblock out-of-bounds read...

7.1AI score0.00888EPSS
Exploits1References6
CVE
CVE
added 2023/04/06 12:0 a.m.50 views

CVE-2023-29417

CVE-2023-29417 affects the libbzip3.a component in bzip3 1.2.2, where bz3_decompress can perform an out-of-bounds read if buffers passed to bzip3 do not have enough space for decompressed data. The vendor characterizes this as a contract-violation report and notes it as invalid from their perspec...

6.5CVSS7AI score0.008EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/04/06 12:0 a.m.4 views

PT-2023-22246 · Bzip3 · Bzip3

Name of the Vulnerable Software and Affected Versions: bzip3 versions prior to 1.2.3 Description: An issue was discovered in libbzip3.a. There is an xwrite out-of-bounds read. Recommendations: For versions prior to 1.2.3, update to version 1.2.3 or later to resolve the issue...

6.5CVSS6.2AI score0.00888EPSS
Exploits1References13
CVE
CVE
added 2023/04/06 12:0 a.m.59 views

CVE-2023-29420

CVE-2023-29420 affects libbzip3.a in bzip3, with a crash caused by an invalid memmove in bz3_decode_block present in versions before 1.2.3. The issue enables a NETWORK attack with LOW complexity and requires user interaction, yielding HIGH impact to availability and MEDIUM overall severity (CVSS ...

6.5CVSS7.1AI score0.00888EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder