302 matches found
CVE-2021-33451
An issue was discovered in lrzip version 0.641. There are memory leaks in fillbuffer in stream.c...
CVE-2022-33067
Lrzip v0.651 was discovered to contain multiple invalid arithmetic shifts via the functions getmagic in lrzip.c and Predictor::init in libzpaq/libzpaq.cpp. These vulnerabilities allow attackers to cause a Denial of Service via unspecified vectors...
CVE-2022-26291
lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaqdecompressbuf and clearrulist. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted Irz file...
EUVD-2021-20157
Malware in sbrugna...
EUVD-2017-17784
Malware in sbrugna...
EUVD-2018-2756
Malware in sbrugna...
EUVD-2017-18839
Malware in sbrugna...
EUVD-2017-17787
Malware in sbrugna...
EUVD-2017-17789
Malware in sbrugna...
EUVD-2017-18838
Malware in sbrugna...
EUVD-2017-17788
Malware in sbrugna...
EUVD-2021-20155
Malware in sbrugna...
EUVD-2022-36124
Malicious code in bioql PyPI...
EUVD-2022-30852
Malicious code in bioql PyPI...
EUVD-2023-43441
Malicious code in bioql PyPI...
EUVD-2025-25651
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-39743
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lrzip-next LZMA v23.01 was discovered to contain an access violation via the component /bz3decodeblock src/libbz3.c. CVE-2023-39743 Note that Nessus relies on t...
Linux Distros Unpatched Vulnerability : CVE-2025-9396
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function GIstrtollinternal of the file strtoll.c. Performing manipulation...
CVE-2025-9396
A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function GIstrtollinternal of the file strtoll.c. Performing manipulation results in null pointer dereference. The attack is only possible with local access. The exploit has been released to the public and may be...
Linux Distros Unpatched Vulnerability : CVE-2022-33067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lrzip v0.651 was discovered to contain multiple invalid arithmetic shifts via the functions getmagic in lrzip.c and Predictor::init in libzpaq/libzpaq.cpp. Thes...