Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2021-3520
Description:There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.
Test IDs: 1.3.6.1.4.1.25623.1.0.853829   1.3.6.1.4.1.25623.1.0.704919   1.3.6.1.4.1.25623.1.0.844955   1.3.6.1.4.1.25623.1.1.4.2021.1825.1   1.3.6.1.4.1.25623.1.1.4.2021.1647.1   1.3.6.1.4.1.25623.1.1.2.2021.2535   1.3.6.1.4.1.25623.1.1.2.2021.2510   1.3.6.1.4.1.25623.1.1.2.2021.2474   1.3.6.1.4.1.25623.1.1.2.2021.2407   1.3.6.1.4.1.25623.1.0.853964   1.3.6.1.4.1.25623.1.1.2.2021.2559  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2021-3520
https://bugzilla.redhat.com/show_bug.cgi?id=1954559
https://bugzilla.redhat.com/show_bug.cgi?id=1954559
https://www.oracle.com//security-alerts/cpujul2021.html
https://www.oracle.com//security-alerts/cpujul2021.html




© 1998-2024 E-Soft Inc. All rights reserved.