bzlib.c in bzip2 prior to 1.0.5 allows user-assisted remote malicious users to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bzip bzip2 0.9 |
||
bzip bzip2 0.9.5a |
||
bzip bzip2 1.0 |
||
bzip bzip2 1.0.1 |
||
bzip bzip2 1.0.2 |
||
bzip bzip2 0.9_b |
||
bzip bzip2 0.9_c |
||
bzip bzip2 0.9.5d |
||
bzip bzip2 0.9_a |
||
bzip bzip2 0.9.5b |
||
bzip bzip2 0.9.5c |
||
bzip bzip2 1.0.3 |