OPENSUSE-SU-2024:11562-1 liblz4-1-1.9.3-2.1 on GA media

These are all security issues fixed in the liblz4-1-1.9.3-2.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11034-1 liblz4-1-1.9.3-1.5 on GA media

These are all security issues fixed in the liblz4-1-1.9.3-1.5 package on the GA media of openSUSE Tumbleweed...

lz4-sys vulnerable to memory corruption via issue in liblz4

lz4-sys up to v1.9.3 bundles a version of liblz4 that is vulnerable to CVE-2021-3520. Attackers could craft a payload that triggers an integer overflow upon decompression, causing an out-of-bounds write. The flaw has been corrected in version v1.9.4 of liblz4, which is included in lz4-sys 1.9.4...

GHSA-9Q5J-JM53-V7VR lz4-sys vulnerable to memory corruption via issue in liblz4

lz4-sys up to v1.9.3 bundles a version of liblz4 that is vulnerable to CVE-2021-3520. Attackers could craft a payload that triggers an integer overflow upon decompression, causing an out-of-bounds write. The flaw has been corrected in version v1.9.4 of liblz4, which is included in lz4-sys 1.9.4...

RUSTSEC-2022-0051 Memory corruption in liblz4

lz4-sys up to v1.9.3 bundles a version of liblz4 that is vulnerable to CVE-2021-3520. Attackers could craft a payload that triggers an integer overflow upon decompression, causing an out-of-bounds write. The flaw has been corrected in version v1.9.4 of liblz4, which is included in lz4-sys 1.9.4...

Memory corruption in liblz4

lz4-sys up to v1.9.3 bundles a version of liblz4 that is vulnerable to CVE-2021-3520. Attackers could craft a payload that triggers an integer overflow upon decompression, causing an out-of-bounds write. The flaw has been corrected in version v1.9.4 of liblz4, which is included in lz4-sys 1.9.4...

SUSE-SU-2021:3948-1 Security update for mariadb

This update for mariadb fixes the following issue: - Update to 10.2.41: - CVE-2021-35604: Fixed InnoDB vulnerability that allowed an high privileged attacker with network access via multiple protocols to compromise MySQL bsc1192497. - Add missing dependency to liblz4 to enable lz4 compression for...

Ubuntu 16.04 ESM : LZ4 vulnerability (USN-4968-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4968-2 advisory. USN-4968-1 fixed a vulnerability in LZ4. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has extracted the...

Ubuntu 18.04 LTS / 20.04 LTS : LZ4 vulnerability (USN-4968-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4968-1 advisory. It was discovered that LZ4 incorrectly handled certain memory operations. If a user or automated system were tricked into uncompressing a specially-...

List of Security Fixes and Improvements in Veeam Backup & Replication

Purpose This article describes all security-related fixes and improvements introduced in each release or update of Veeam Backup & Replication. The goal of this article is to provide our customers' security and compliance teams with detailed information on security improvements between releases, i...