CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 4:31 a.m.•0 views

SUSE CVE-2018-5650

In Long Range Zip aka lrzip 0.631, there is an infinite loop and application hang in the unzipmatch function in runzip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file...

5.5CVSS6.7AI score0.00402EPSS

SUSE CVE•added 2023/02/15 4:28 a.m.•1 views

SUSE CVE-2018-9058

In Long Range Zip aka lrzip 0.631, there is an infinite loop in the runzipfd function of runzip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file...

5.5CVSS6.7AI score0.00421EPSS

SUSE CVE•added 2023/02/15 4:27 a.m.•1 views

SUSE CVE-2018-11496

In Long Range Zip aka lrzip 0.631, there is a use-after-free in readstream in stream.c, because decompressfile in lrzip.c lacks certain size validation...

6.5CVSS7.9AI score0.00842EPSS

SUSE CVE•added 2023/02/15 4:13 a.m.•1 views

SUSE CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

5.5CVSS5.5AI score0.00209EPSS

OSV•added 2023/02/02 1:36 p.m.•1 views

USN-5840-1 lrzip vulnerabilities

It was discovered that Long Range ZIP incorrectly handled pointers. If a user or an automated system were tricked into opening a certain specially crafted ZIP file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM,...

9.8CVSS6.8AI score0.01045EPSS

Exploits6References7

Ubuntu•added 2023/02/02 1:36 p.m.•63 views

USN-5840-1: Long Range ZIP vulnerabilities

9.8CVSS7.3AI score0.01045EPSS

Exploits6

Tenable Nessus•added 2023/02/02 12:0 a.m.•26 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Long Range ZIP vulnerabilities (USN-5840-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5840-1 advisory. It was discovered that Long Range ZIP incorrectly handled pointers. If a user or an automated system were tricked int...

9.8CVSS7.3AI score0.01045EPSS

Exploits6References7

OpenVAS•added 2023/01/27 12:0 a.m.•21 views

Ubuntu: Security Advisory (USN-5171-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.00843EPSS

Exploits6References2

RedhatCVE•added 2022/05/21 12:11 a.m.•21 views

CVE-2018-9058

5.5CVSS4.6AI score0.00421EPSS

Exploits1References1

RedhatCVE•added 2022/05/20 11:52 p.m.•25 views

CVE-2018-10685

In Long Range Zip aka lrzip 0.631, there is a use-after-free in the lzmadecompressbuf function of stream.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS7.1AI score0.00559EPSS

Exploits1References1

Ubuntu•added 2021/12/09 11:27 a.m.•33 views

USN-5171-2: Long Range ZIP vulnerabilities

USN-5171-1 fixed vulnerabilities in Long Range ZIP. This update provides the corresponding updates for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that Long Range ZIP incorrectly handled certain specially crafted lrz files. A remote attacker could possibly...

OSV•added 2021/12/09 11:27 a.m.•0 views

Exploits6

USN-5171-2 lrzip vulnerabilities

Tenable Nessus•added 2021/12/08 12:0 a.m.•24 views

Ubuntu 18.04 LTS : Long Range ZIP vulnerabilities (USN-5171-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5171-1 advisory. It was discovered that Long Range ZIP incorrectly handled certain specially crafted lrz files. A remote attacker could possibly use this issue to cause a...

OSV•added 2021/12/06 12:51 p.m.•1 views

USN-5171-1 lrzip vulnerabilities

It was discovered that Long Range ZIP incorrectly handled certain specially crafted lrz files. A remote attacker could possibly use this issue to cause a denial of service crash or other unspecified impact...