Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bzip2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-1260
bzip2 allows remote malicious users to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Bzip Bzip2
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Debian Debian Linux 3.0
Debian Debian Linux 3.1
Apple Mac Os X
7.5
CVSSv2
CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 up to and including 1.0.6 has an out-of-bounds write when there are many selectors.
Bzip Bzip2
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Python Python
1 Github repository
4.6
CVSSv2
CVE-2005-0758
zgrep in gzip prior to 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
Gnu Gzip
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
2 Github repositories
6.8
CVSSv2
CVE-2009-1391
Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module prior to 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent malicious users to cause a denial of service (hang or crash) via a crafted zlib compressed...
Paul Marquess Compress-raw-zlib Perl Module 2.008
Paul Marquess Compress-raw-zlib Perl Module 2.006
Paul Marquess Compress-raw-zlib Perl Module 2.001
Paul Marquess Compress-raw-zlib Perl Module
Paul Marquess Compress-raw-zlib Perl Module 2.005
Paul Marquess Compress-raw-zlib Perl Module 2.004
Paul Marquess Compress-raw-zlib Perl Module 2.014
Paul Marquess Compress-raw-zlib Perl Module 2.012
Paul Marquess Compress-raw-zlib Perl Module 2.011
Paul Marquess Compress-raw-zlib Perl Module 2.003
Paul Marquess Compress-raw-zlib Perl Module 2.002
Paul Marquess Compress-raw-zlib Perl Module 2.010
Paul Marquess Compress-raw-zlib Perl Module 2.009
1 EDB exploit
7.5
CVSSv2
CVE-2016-4336
An exploitable out-of-bounds write exists in the Bzip2 parsing of the Lexmark Perspective Document Filters conversion functionality. A crafted Bzip2 document can lead to a stack-based buffer overflow causing an out-of-bounds write which under the right circumstance could potentia...
Lexmark Perceptive Document Filters -
10
CVSSv2
CVE-2007-6337
Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV prior to 0.92 has unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.91.2
7.5
CVSSv2
CVE-2021-32840
SharpZipLib (or #ziplib) is a Zip, GZip, Tar and BZip2 library. Prior to version 1.3.3, a TAR file entry `../evil.txt` may be extracted in the parent directory of `destFolder`. This leads to arbitrary file write that may lead to code execution. The vulnerability was patched in ve...
Sharpziplib Project Sharpziplib
5
CVSSv2
CVE-2005-1530
Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value.
Sophos Sophos Anti-virus 3.4.6
Sophos Sophos Anti-virus 3.78
Sophos Sophos Anti-virus 3.85
Sophos Sophos Anti-virus 3.86
Sophos Sophos Puremessage Anti-virus 4.6
Sophos Sophos Small Business Suite 1.0
Sophos Sophos Anti-virus 3.80
Sophos Sophos Anti-virus 3.81
Sophos Sophos Anti-virus 3.82
Sophos Sophos Anti-virus 5.0.1
Sophos Sophos Mailmonitor 2.0
Sophos Sophos Anti-virus 3.83
Sophos Sophos Anti-virus 3.84
Sophos Sophos Mailmonitor 2.1
Sophos Sophos Mailmonitor For Notes Domino
Sophos Sophos Anti-virus 3.78d
Sophos Sophos Anti-virus 3.79
Sophos Sophos Anti-virus 3.90
Sophos Sophos Anti-virus 3.91
5
CVSSv2
CVE-2012-2098
Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress prior to 1.4.1 allows remote malicious users to cause a denial of service (CPU consumption) via a file with many repeating inputs.
Apache Commons Compress
2 Github repositories
6.8
CVSSv2
CVE-2010-0065
Disk Images in Apple Mac OS X prior to 10.6.3 allows user-assisted remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted disk image with bzip2 compression.
Apple Mac Os X 10.5.6
Apple Mac Os X 10.5.5
Apple Mac Os X 10.5.4
Apple Mac Os X 10.5.3
Apple Mac Os X Server 10.5
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.1
Apple Mac Os X
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.5.7
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server
Apple Mac Os X 10.5.7
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.0
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.3
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.6.1
Apple Mac Os X 10.5.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »