SUSE CVE-2017-9928

In lrzip 0.631, a stack buffer overflow was found in the function getfileinfo in lrzip.c:979, which allows attackers to cause a denial of service via a crafted file...

Debian: Security Advisory (DLA-2725-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Irzip Reuse After Release Vulnerability

Irzip is a compression utility that excels at compressing large files. A post-release reuse vulnerability exists in the lzmadecompressbuf function in stream.c in Irzip version 0.631, which can be exploited by an attacker to cause a denial of service via specially crafted compressed files...

UBUNTU-CVE-2021-27345

A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service DOS via a crafted compressed file...

Irzip 资源管理错误漏洞

Irzip is a compression utility that excels at compressing large files. A post-release reuse vulnerability exists in the lzmadecompressbuf function in stream.c in Irzip version 0.631, which can be exploited by an attacker to cause a denial of service via specially crafted compressed files...

PT-2020-6434 · Lrzip +2 · Lrzip +2

Name of the Vulnerable Software and Affected Versions: Lrzip version 0.631 Description: The issue is related to a use after free in the lzma decompress buf function in stream.c, which can be exploited by attackers to cause a Denial of Service DoS via a crafted compressed file. This can allow a...

PT-2020-6433 · Lrzip +2 · Lrzip +2

Name of the Vulnerable Software and Affected Versions: Lrzip version 0.631 Description: A null pointer dereference was discovered in the ucompthread function in stream.c, which allows attackers to cause a denial of service via a crafted compressed file. The exploitation of this issue may permit a...

Long Range Zip Memory Misreference Vulnerability

Long Range Zip aka lrzip is an open source compression utility for large files. A memory misreference vulnerability exists in the 'readstream' function of the stream.c file in lrzip version 0.631, which stems from a failure to check the size value of decompressfile in the lrzip.c file. A remote...

PT-2018-10613 · Lrzip +1 · Long Range Zip +1

Name of the Vulnerable Software and Affected Versions: Long Range Zip aka lrzip version 0.631 Description: The issue is related to a use-after-free in the read stream function in stream.c, caused by the lack of certain size validation in the decompress file function in lrzip.c. Recommendations: F...

PT-2018-17143 · Lrzip +2 · Long Range Zip +2

Name of the Vulnerable Software and Affected Versions: Long Range Zip aka lrzip version 0.631 Description: The issue is related to an infinite loop and application hang in the get fileinfo function. Remote attackers could leverage this to cause a denial of service via a crafted lrz file...

Long Range Zip ucompthread function memory misreference vulnerability

Long Range Zip also known as lrzip is a compression utility that specializes in compressing large files. A post-release reuse vulnerability exists in the ucompthread function in stream.c in Long Range Zip 0.631. A remote attacker can exploit this vulnerability via a specially crafted lrz file to...

Long Range Zip Denial of Service Vulnerability

Long Range Zip aka lrzip is an open source compression utility for large files. A denial of service vulnerability exists in the 'unzipmatch' function of the runzip.c file in Long Range Zip version 0.631. A remote attacker can exploit this vulnerability to cause a denial of service infinite loop a...

PT-2018-17121 · Lrzip +1 · Long Range Zip +1

Name of the Vulnerable Software and Affected Versions: Long Range Zip aka lrzip version 0.631 Description: The issue is related to a use-after-free in the ucompthread function, located in stream.c. This could allow remote attackers to cause a denial of service by providing a crafted lrz file...

PT-2017-19291 · Lrzip +1 · Lrzip +1

Name of the Vulnerable Software and Affected Versions: lrzip version 0.631 Description: A stack buffer overflow was found in the get fileinfo function in lrzip.c, which allows attackers to cause a denial of service via a crafted file. Recommendations: For lrzip version 0.631, as a temporary...

PT-2017-19292 · Lrzip +1 · Lrzip +1

Name of the Vulnerable Software and Affected Versions: lrzip version 0.631 Description: A stack buffer overflow was found in the get fileinfo function in lrzip.c at line 1074, which allows attackers to cause a denial of service via a crafted file. Recommendations: For lrzip version 0.631, conside...

lrzip denial of service vulnerability (CNVD-2017-07521)

lrzip Long Range ZIP is an open source compression utility for large files. A denial of service vulnerability exists in the 'joinpthread' function in the stream.c file of liblrzip.so in lrzip version 0.631. A remote attacker can exploit this vulnerability to cause a denial of service null pointer...

lrzip denial of service vulnerability

lrzip Long Range ZIP is an open source compression utility for large files. A denial of service vulnerability exists in the 'bufRead::get' function in the libzpaq/libzpaq.h file of liblrzip.so in lrzip version 0.631. A remote attacker can exploit this vulnerability to cause a denial of service nu...

lrzip denial of service vulnerability (CNVD-2017-06449)

lrzip Long Range ZIP is an open source compression utility for large files. A security bypass vulnerability exists in the 'bufRead::get' function of the libzpaq/libzpaq.h file in liblrzip.so in lrzip version 0.631. A remote attacker could use this vulnerability to cause a denial of service other...

PT-2017-18576 · Lrzip +1 · Lrzip +1

Name of the Vulnerable Software and Affected Versions: lrzip version 0.631 Description: The issue allows remote attackers to cause a denial of service, resulting in a use-after-free and application crash, via a crafted archive. This is due to a problem in the read stream function in stream.c in...