Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bzip bzip2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 up to and including 1.0.6 has an out-of-bounds write when there are many selectors.
Bzip Bzip2
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Python Python
1 Github repository
6.5
CVSSv3
CVE-2016-3189
Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.
Bzip Bzip2 1.0.6
Python Python
4 Github repositories
NA
CVE-2011-4089
The bzexe command in bzip2 1.0.5 and previous versions generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.
Bzip Bzip2 1.0
Bzip Bzip2 1.0.3
Bzip Bzip2
Bzip Bzip2 1.0.2
Bzip Bzip2 1.0.1
1 EDB exploit
NA
CVE-2010-0405
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 prior to 1.0.6 allows context-dependent malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Bzip Bzip2 1.0
Bzip Bzip2 0.9.5 A
Bzip Bzip2 0.9.5 D
Bzip Bzip2 0.9.5 C
Bzip Bzip2 0.9 A
Bzip Bzip2 0.9.5d
Bzip Bzip2 0.9.0a
Bzip Bzip2 0.9.0
Bzip Bzip2 0.9 C
Bzip Bzip2 1.0.3
Bzip Bzip2 1.0.2
Bzip Bzip2 0.9.5a
Bzip Bzip2 0.9.5b
Libzip2 Libzip2
Bzip Bzip2 0.9.0c
Bzip Bzip2 0.9
Bzip Bzip2 1.0.1
Bzip Bzip2 0.9.5c
Bzip Bzip2 0.9 B
Bzip Bzip2 0.9.5 B
Bzip Bzip2 1.0.4
Bzip Bzip2 0.9.0b
NA
CVE-2009-1884
Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2 module prior to 2.018 for Perl allows context-dependent malicious users to cause a denial of service (application hang or crash) via a crafted bzip2 compressed stream that triggers a buffer overflow,...
Bzip Compress-raw-bzip2
Bzip Compress-raw-bzip2 2.0.00 10
Bzip Compress-raw-bzip2 2.0.00 12
Bzip Compress-raw-bzip2 2.0.00 14
Bzip Compress-raw-bzip2 2.0.01
Bzip Compress-raw-bzip2 2.0.02
Bzip Compress-raw-bzip2 2.0.03
Bzip Compress-raw-bzip2 2.0.05
Bzip Compress-raw-bzip2 2.0.06
Bzip Compress-raw-bzip2 2.0.08
Bzip Compress-raw-bzip2 2.0.09
Bzip Compress-raw-bzip2 2.010
Bzip Compress-raw-bzip2 2.011
Bzip Compress-raw-bzip2 2.012
Bzip Compress-raw-bzip2 2.014
Bzip Compress-raw-bzip2 2.015
NA
CVE-2008-1372
bzlib.c in bzip2 prior to 1.0.5 allows user-assisted remote malicious users to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Bzip Bzip2 0.9
Bzip Bzip2 0.9.5a
Bzip Bzip2 1.0
Bzip Bzip2 1.0.1
Bzip Bzip2 1.0.2
Bzip Bzip2 0.9 B
Bzip Bzip2 0.9 C
Bzip Bzip2 0.9.5d
Bzip Bzip2 0.9 A
Bzip Bzip2 0.9.5b
Bzip Bzip2 0.9.5c
Bzip Bzip2 1.0.3
NA
CVE-2005-1260
bzip2 allows remote malicious users to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Bzip Bzip2
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Debian Debian Linux 3.0
Debian Debian Linux 3.1
Apple Mac Os X
NA
CVE-2005-0953
Race condition in bzip2 1.0.2 and previous versions allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Bzip Bzip2 0.9.5 D
Bzip Bzip2 0.9 A
Bzip Bzip2 0.9
Bzip Bzip2 0.9.5 A
Bzip Bzip2 1.0
Bzip Bzip2 1.0.1
Bzip Bzip2 1.0.2
Bzip Bzip2 0.9.5 B
Bzip Bzip2 0.9.5 C
Bzip Bzip2 0.9 B
Bzip Bzip2 0.9 C
NA
CVE-2002-0759
bzip2 prior to 1.0.2 in FreeBSD 4.5 and previous versions, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use the O_EXCL flag to create files during decompression and does not warn the user if an existing file would be overwritten, which could allow malic...
Bzip Bzip2 0.9.5c
Bzip Bzip2 1.0
Bzip Bzip2 0.9.0a
Bzip Bzip2 0.9.0b
Bzip Bzip2 0.9.0c
Bzip Bzip2 0.9.5a
Bzip Bzip2 0.9.5b
Bzip Bzip2 0.9.0
Bzip Bzip2 0.9.5d
Bzip Bzip2 1.0.1
NA
CVE-2002-0760
Race condition in bzip2 prior to 1.0.2 in FreeBSD 4.5 and previous versions, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, decompresses files with world-readable permissions before setting the permissions to what is specified in the bzip2 archive, which could all...
Bzip Bzip2 0.9.0
Bzip Bzip2 0.9.0a
Bzip Bzip2 0.9.0b
Bzip Bzip2 0.9.5a
Bzip Bzip2 0.9.5c
Bzip Bzip2 0.9.5d
Bzip Bzip2 1.0
Bzip Bzip2 1.0.1
Bzip Bzip2 0.9.0c
Bzip Bzip2 0.9.5b
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »