CVE-2023-29420

Опубликовано: 06 апр. 2023

Источник: debian

EPSS Низкий

Описание

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an invalid memmove in bz3_decode_block.

Пакет	Статус	Версия исправления	Релиз	Тип
bzip3	fixed	1.2.3-1	experimental	package
bzip3	fixed	1.2.2-2		package

https://github.com/kspalaiologos/bzip3/commit/bb06deb85f1c249838eb938e0dab271d4194f8fa (1.2.3)
https://github.com/kspalaiologos/bzip3/issues/92

EPSS

Процентиль: 41%

0.00192

Низкий

CVE-2023-29420

CVSS3: 6.5

ubuntu

почти 3 года назад

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an invalid memmove in bz3_decode_block.

CVE-2023-29420

CVSS3: 6.5

nvd

почти 3 года назад

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an invalid memmove in bz3_decode_block.

GHSA-c89p-xpwc-c8c4

CVSS3: 6.5

github

почти 3 года назад

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is a crash caused by an invalid memmove in bz3_decode_block.

EPSS

Процентиль: 41%

0.00192

Низкий