EUVD-2017-17786

Malware in sbrugna...

lrzip denial of service vulnerability (CNVD-2017-07521)

lrzip Long Range ZIP is an open source compression utility for large files. A denial of service vulnerability exists in the 'joinpthread' function in the stream.c file of liblrzip.so in lrzip version 0.631. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

lrzip denial of service vulnerability

lrzip Long Range ZIP is an open source compression utility for large files. A denial of service vulnerability exists in the 'bufRead::get' function in the libzpaq/libzpaq.h file of liblrzip.so in lrzip version 0.631. A remote attacker can exploit this vulnerability to cause a denial of service nu...

CVE-2017-8843

The joinpthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted archive...

Null pointer dereference

The joinpthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted archive...

CVE-2017-8842

The bufRead::get function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted archive...

CVE-2017-8844

The read1g function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted archive...

UBUNTU-CVE-2017-8844

The read1g function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted archive...

CVE-2017-8844

The CVE-2017-8844 issue affects lrzip 0.631 where the read_1g function in stream.c inside liblrzip.so can be exploited by a crafted archive to cause a heap-based buffer overflow, potentially triggering a denial of service or other impact. Public advisories (Debian DLA-2725-1, Ubuntu USN-5171-1/2,...

CVE-2017-8847

The bufRead::get function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted archive...

CVE-2017-8844

The read1g function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted archive...

PT-2017-18573 · Lrzip · Lrzip

Name of the Vulnerable Software and Affected Versions: lrzip version 0.631 Description: The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, via a crafted archive. This is due to a problem in the join pthread function in...