Bzip : Security Vulnerabilities, CVEs, CVSS score >= 3
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
Max CVSS
9.8
EPSS Score
1.75%
Published
2019-06-19
Updated
2022-06-27
Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.
Max CVSS
6.5
EPSS Score
3.57%
Published
2016-06-30
Updated
2022-08-16
The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.
Max CVSS
4.6
EPSS Score
0.04%
Published
2014-04-16
Updated
2014-04-17
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.
Max CVSS
5.1
EPSS Score
2.72%
Published
2010-09-28
Updated
2018-10-10
Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2 module before 2.018 for Perl allows context-dependent attackers to cause a denial of service (application hang or crash) via a crafted bzip2 compressed stream that triggers a buffer overflow, a related issue to CVE-2009-1391.
Max CVSS
4.3
EPSS Score
0.26%
Published
2009-08-19
Updated
2023-02-13
bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Max CVSS
4.3
EPSS Score
8.61%
Published
2008-03-18
Updated
2018-10-11
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Max CVSS
5.0
EPSS Score
2.03%
Published
2005-05-19
Updated
2020-11-13
Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Max CVSS
3.7
EPSS Score
0.08%
Published
2005-05-02
Updated
2018-10-19
bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use the O_EXCL flag to create files during decompression and does not warn the user if an existing file would be overwritten, which could allow attackers to overwrite files via a bzip2 archive.
Max CVSS
5.0
EPSS Score
0.16%
Published
2002-08-12
Updated
2008-09-05
9 vulnerabilities found