logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-33067

Description

Lrzip v0.651 was discovered to contain multiple invalid arithmetic shifts via the functions get_magic in lrzip.c and Predictor::init in libzpaq/libzpaq.cpp. These vulnerabilities allow attackers to cause a Denial of Service via unspecified vectors.


Affected Package


OS OS Version Package Name Package Version
ubuntu 20.04 lrzip any
ubuntu 22.04 lrzip any
ubuntu 14.04 lrzip any
ubuntu upstream lrzip any
ubuntu 20.04 zpaq any
ubuntu 22.04 zpaq any
ubuntu upstream zpaq any

Related