Known Vulnerabilities for products from Bzip
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Bzip".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-12900 | BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. | 9.8 - CRITICAL | 2019-06-19 | 2023-11-07 |
| CVE-2016-3189 | Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via ... | 6.5 - MEDIUM | 2016-06-30 | 2023-11-07 |
| CVE-2011-4089 | The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files dur... | 4.6 - MEDIUM | 2014-04-16 | 2014-04-17 |
| CVE-2010-0405 | Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent a... | 5.1 - MEDIUM | 2010-09-28 | 2023-11-07 |
| CVE-2009-1884 | Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2 module before 2.018 for Perl allows context-... | 4.3 - MEDIUM | 2009-08-19 | 2023-02-13 |
| CVE-2008-1372 | bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file t... | 4.3 - MEDIUM | 2008-03-18 | 2018-10-11 |
| CVE-2005-1260 | bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an i... | 5 - MEDIUM | 2005-05-19 | 2020-11-13 |
| CVE-2005-0953 | Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack ... | 3.7 - LOW | 2005-05-02 | 2018-10-19 |
| CVE-2002-0761 | bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symboli... | 2.1 - LOW | 2002-08-12 | 2008-09-05 |
| CVE-2002-0760 | Race condition in bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating system... | 1.2 - LOW | 2002-08-12 | 2008-09-05 |
| CVE-2002-0759 | bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use th... | 5 - MEDIUM | 2002-08-12 | 2008-09-05 |
Known software with vulnerabilities from Bzip
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Bzip | Bzip2 | 0.1 |