2 matches found
PT-2020-6434 · Lrzip +2 · Lrzip +2
Name of the Vulnerable Software and Affected Versions: Lrzip version 0.631 Description: The issue is related to a use after free in the lzma decompress buf function in stream.c, which can be exploited by attackers to cause a Denial of Service DoS via a crafted compressed file. This can allow a...
PT-2020-6433 · Lrzip +2 · Lrzip +2
Name of the Vulnerable Software and Affected Versions: Lrzip version 0.631 Description: A null pointer dereference was discovered in the ucompthread function in stream.c, which allows attackers to cause a denial of service via a crafted compressed file. The exploitation of this issue may permit a...