BZip3 缓冲区错误漏洞

BZip3 is a better, faster and stronger compressor from the individual developer Kamila Szewczyk. A security vulnerability exists in BZip3 versions prior to 1.2.3, which stems from an invalid memory move in bz3decodeblock resulting in a denial of service...

httpd: Push diary crash on specifically crafted HTTP/2 header

A flaw was found in Apache httpd in versions prior to 2.4.46. A specially crafted Cache-Digest header triggers negative argument to memmove that could lead to a crash and denial of service. The highest threat from this vulnerability is to system availability...