Lucene search
K

12 matches found

Amazon
Amazon
added 2026/05/14 12:0 a.m.15 views

Important: python3

Issue Overview: Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open" API could have commands injected into the underlying shell. See CVE-2026-4519 for details. CVE-2026-4786 Use-after-free UAF wa...

9.1CVSS7.5AI score0.00579EPSS
Exploits0
OSV
OSV
added 2026/02/10 2:16 p.m.5 views

DEBIAN-CVE-2025-15570

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

7.8CVSS5.1AI score0.00202EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/02/10 2:16 p.m.7 views

CVE-2025-15570

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

7.8CVSS5.7AI score0.00202EPSS
Exploits1References7
OSV
OSV
added 2026/02/10 2:16 p.m.5 views

UBUNTU-CVE-2025-15570

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

7.8CVSS5.4AI score0.00202EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2026/02/10 1:2 p.m.6 views

CVE-2025-15570

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

5.3CVSS5.1AI score0.00202EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2026/02/10 1:2 p.m.31 views

CVE-2025-15570 ckolivas lrzip stream.c lzma_decompress_buf use after free

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

5.3CVSS0.00202EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2026/02/10 1:2 p.m.6 views

CVE-2025-15570

A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzmadecompressbuf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project was informed of the...

7.8CVSS5.1AI score0.00202EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.8 views

PT-2026-7262

Name of the Vulnerable Software and Affected Versions lrzip versions up to 0.651 Description A flaw exists in lrzip that involves a use-after-free condition within the lzma decompress buf function located in the stream.c file. Local access is required for exploitation. The exploit has been public...

7.8CVSS5.2AI score0.00202EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2021-27347

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in lzmadecompressbuf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service DoS via a crafted compressed file...

5.5CVSS6.1AI score0.00716EPSS
Exploits1References2
AlpineLinux
AlpineLinux
added 2021/06/10 3:37 p.m.47 views

CVE-2021-27347

Use after free in lzmadecompressbuf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service DoS via a crafted compressed file...

5.5CVSS6AI score0.00716EPSS
Exploits1
OSV
OSV
added 2018/05/02 10:29 p.m.2 views

DEBIAN-CVE-2018-10685

In Long Range Zip aka lrzip 0.631, there is a use-after-free in the lzmadecompressbuf function of stream.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS9.5AI score0.02485EPSS
Exploits1References1
OSV
OSV
added 2018/05/02 10:29 p.m.16 views

CVE-2018-10685

In Long Range Zip aka lrzip 0.631, there is a use-after-free in the lzmadecompressbuf function of stream.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact...

9.8CVSS10AI score
Exploits0References2
Rows per page
Query Builder