Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
long range zip project long range zip 0.641 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-33451
An issue exists in lrzip version 0.641. There are memory leaks in fill_buffer() in stream.c.
Long Range Zip Project Long Range Zip 0.641
7.8
CVSSv3
CVE-2021-33453
An issue exists in lrzip version 0.641. There is a use-after-free in ucompthread() in stream.c:1538.
Long Range Zip Project Long Range Zip 0.641
5.5
CVSSv3
CVE-2022-26291
lrzip v0.641 exists to contain a multiple concurrency use-after-free between the functions zpaq_decompress_buf() and clear_rulist(). This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted Irz file.
Long Range Zip Project Long Range Zip 0.641
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
5.5
CVSSv3
CVE-2020-25467
A null pointer dereference exists lzo_decompress_buf in stream.c in Irzip 0.621 which allows an malicious user to cause a denial of service (DOS) via a crafted compressed file.
Long Range Zip Project Long Range Zip 0.621
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2021-27347
Use after free in lzma_decompress_buf function in stream.c in Irzip 0.631 allows malicious users to cause Denial of Service (DoS) via a crafted compressed file.
Long Range Zip Project Long Range Zip 0.631
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2021-27345
A null pointer dereference exists in ucompthread in stream.c in Irzip 0.631 which allows malicious users to cause a denial of service (DOS) via a crafted compressed file.
Long Range Zip Project Long Range Zip 0.631
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2018-5786
In Long Range Zip (aka lrzip) 0.631, there is an infinite loop and application hang in the get_fileinfo function (lrzip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file.
Long Range Zip Project Long Range Zip 0.631
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started