Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
CVE-2021-27347 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-27347
Use after free in lzma_decompress_buf function in stream.c in Irzip 0.631 allows malicious users to cause Denial of Service (DoS) via a crafted compressed file.
Long Range Zip Project Long Range Zip 0.631
Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2022-28044
Irzip v0.640 exists to contain a heap memory corruption via the component lrzip.c:initialise_control.
Irzip Project Irzip 0.640
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
4.3
CVSSv2
CVE-2020-25467
A null pointer dereference exists lzo_decompress_buf in stream.c in Irzip 0.621 which allows an malicious user to cause a denial of service (DOS) via a crafted compressed file.
Long Range Zip Project Long Range Zip 0.621
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2021-27345
A null pointer dereference exists in ucompthread in stream.c in Irzip 0.631 which allows malicious users to cause a denial of service (DOS) via a crafted compressed file.
Long Range Zip Project Long Range Zip 0.631
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2018-5786
In Long Range Zip (aka lrzip) 0.631, there is an infinite loop and application hang in the get_fileinfo function (lrzip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted lrz file.
Long Range Zip Project Long Range Zip 0.631
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
4.3
CVSSv2
CVE-2022-26291
lrzip v0.641 exists to contain a multiple concurrency use-after-free between the functions zpaq_decompress_buf() and clear_rulist(). This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted Irz file.
Long Range Zip Project Long Range Zip 0.641
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started