All errata/sisyphus/ALT-PU-2014-1929-1
ALT-PU-2014-1929-1

Package update liblzo2 in branch sisyphus

Version2.08-alt1
Task#125006
Published2014-07-15
Max severityHIGH
Severity:

Closed issues (1)

CVE-2014-4607
HIGH8.8

Integer overflow in the LZO algorithm variant in Oberhumer liblzo2 and lzo-2 before 2.07 on 32-bit platforms might allow remote attackers to execute arbitrary code via a crafted Literal Run.

Published: 2020-02-12Modified: 2024-11-21
CVSS 2.0MEDIUM 6.8
CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS 3.xHIGH 8.8
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References