Lucene search
+L

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-0896

Malware in sbrugna...

7.5CVSS7.4AI score0.01438EPSS
Exploits0References11
Ubuntu
Ubuntu
added 2022/04/13 12:45 p.m.280 views

USN-5378-2: XZ Utils vulnerability

Cleemy Desu Wayo discovered that XZ Utils incorrectly handled certain filenames. If a user or automated system were tricked into performing xzgrep operations with specially crafted filenames, a remote attacker could overwrite arbitrary files...

8.8CVSS7.2AI score0.04271EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2021/05/25 6:39 p.m.54 views

github.com/ulikunitz/xz fixes readUvarint Denial of Service (DoS)

Impact xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. Patches The problem has been fixed in release v0.5.8. Workarounds Limit the size ...

7.5CVSS7.6AI score0.01438EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2021/05/25 6:39 p.m.84 views

GHSA-25XM-HR59-7C27 github.com/ulikunitz/xz fixes readUvarint Denial of Service (DoS)

Impact xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. Patches The problem has been fixed in release v0.5.8. Workarounds Limit the size ...

7.5CVSS7.7AI score0.01438EPSS
Exploits0References5
NVD
NVD
added 2021/04/28 7:15 p.m.31 views

CVE-2021-29482

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

7.5CVSS0.01438EPSS
Exploits0References2
OSV
OSV
added 2021/04/28 7:15 p.m.26 views

CVE-2021-29482

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

7.5CVSS6.6AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/04/28 7:15 p.m.46 views

CVE-2021-29482

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

7.5CVSS6.9AI score0.01438EPSS
Exploits0References3
Prion
Prion
added 2021/04/28 7:15 p.m.23 views

Format string

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

5CVSS7.3AI score0.0473EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/04/28 6:15 p.m.88 views

CVE-2021-29482

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

7.5CVSS6.9AI score0.01438EPSS
Exploits0
Rows per page
Query Builder