CVE-2023-37187
CVE-2023-37187 affects c-blosc2 before 2.9.3. The root cause is a NULL pointer dereference in zfp_acc_decompress (zfp/blosc2-zfp.c). This can cause crashes (potential availability impact) and is documented across NVD/Red Hat/CVE records. Remediation: upgrade to version 2.9.3 or later; as a tempor...