SUSE CVE-2017-8845

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

SUSE CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

CVE-2019-10654

The lzo1xdecompress function in liblzo2.so.2 in LZO 2.10, as used in Long Range Zip aka lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive, a different vulnerability than CVE-2017-8845...

CVE-2019-10654

The CVE-2019-10654 issue concerns Long Range ZIP (lrzip) 0.631 using liblzo2.so.2 (LZO 2.10). The vulnerable component is lzo1x_decompress; a crafted archive can trigger an invalid memory read leading to denial of service (application crash). This is tied to the same lrzip vulnerability family as...

Code injection

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

CVE-2017-8845

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

CVE-2017-8845

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

CVE-2017-8845

The lzo1xdecompress function in lzo1xd.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted archive...

CVE-2017-8845

CVE-2017-8845 affects lrzip (lrzip 0.631) via the lzo1x_d.ch code path in LZO 2.08, where lzo1x_decompress can trigger an invalid memory read and crash when processing a crafted archive. Connected docs confirm the vulnerability is remote-executable in a 0.631 deployment and ties to the same lzo1x...