Описание
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.0.3-0ubuntu2.2 |
| devel | released | 1.0.5-4ubuntu1 |
| hardy | released | 1.0.4-2ubuntu4.1 |
| jaunty | released | 1.0.5-1ubuntu1.1 |
| karmic | released | 1.0.5-3ubuntu0.1 |
| lucid | released | 1.0.5-4ubuntu0.1 |
| upstream | released | 1.0.6 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.95.3+dfsg-1ubuntu0.09.04~dapper4.1 |
| devel | released | 1.0.5-4ubuntu1 |
| hardy | released | 0.95.3+dfsg-1ubuntu0.09.04~hardy2.5 |
| jaunty | released | 0.95.3+dfsg-1ubuntu0.09.04.3 |
| karmic | released | 0.95.3+dfsg-1ubuntu0.09.10.3 |
| lucid | released | 0.96.1+dfsg-0ubuntu0.10.04.2 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.13.11ubuntu7.2 |
| devel | not-affected | uses dynamic system libbz2 |
| hardy | released | 1.14.16.6ubuntu4.2 |
| jaunty | released | 1.14.24ubuntu1.2 |
| karmic | released | 1.15.4ubuntu2.2 |
| lucid | released | 1.15.5.6ubuntu4.3 |
| upstream | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.4b41-2ubuntu0.1 |
| devel | released | 0.4b43-1build1 |
| hardy | released | 0.4b41-5ubuntu0.1 |
| jaunty | released | 0.4b41-6ubuntu0.1 |
| karmic | released | 0.4b42-1ubuntu0.9.10.1 |
| lucid | released | 0.4b42-1ubuntu0.10.04.1 |
| upstream | not-affected |
Показывать по
EPSS
5.1 Medium
CVSS2
Связанные уязвимости
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Integer overflow in the BZ2_decompress function in decompress.c in bzi ...
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
EPSS
5.1 Medium
CVSS2