bzip bzip2 0.15

CPE Details

bzip bzip2 0.15
bzip
bzip2
0.15
2020-11-17
19h37 +00:00
2020-11-17
19h37 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:bzip:bzip2:0.15:*:*:*:*:*:*:*

Informations

Vendor

bzip

Product

bzip2

Version

0.15

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2019-12900 2019-06-19 20h07 +00:00 BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
9.8
Critique
CVE-2011-4089 2014-04-16 16h00 +00:00 The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.
4.6
CVE-2010-0405 2010-09-28 15h00 +00:00 Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
5.1
CVE-2005-1260 2005-05-19 02h00 +00:00 bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
5