CVE-2018-11498
CVE-2018-11498 affects Lizard v1.0 and LZ5 v2.0. A buffer size check is missing in Lizard_decompress_LIZv1 (lib/lizard_decompress_liz.h) during memcpy, enabling remote attackers to trigger denial of service or remote code execution with crafted input. Sources from CNVD/FreeBSD VuXML/NVD OSV corro...