RSS   Podatności dla 'Irzip'   RSS

2022-04-15
 
CVE-2022-28044

CWE-787
 

 
Irzip v0.640 was discovered to contain a heap memory corruption via the component lrzip.c:initialise_control.

 
2022-03-28
 
CVE-2022-26291

CWE-416
 

 
lrzip v0.641 was discovered to contain a multiple concurrency use-after-free between the functions zpaq_decompress_buf() and clear_rulist(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted Irz file.

 
2021-06-10
 
CVE-2021-27345

CWE-476
 

 
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service (DOS) via a crafted compressed file.

 
 
CVE-2021-27347

CWE-416
 

 
Use after free in lzma_decompress_buf function in stream.c in Irzip 0.631 allows attackers to cause Denial of Service (DoS) via a crafted compressed file.

 


Copyright 2024, cxsecurity.com

 

Back to Top