Vulnerabilities > CVE-2023-39743 - Unspecified vulnerability in Pete4Abw Lzma Software Development KIT 23.01
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
LOW Summary
lrzip-next LZMA v23.01 was discovered to contain an access violation via the component /bz3_decode_block src/libbz3.c.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- https://gist.github.com/huanglei3/ec9090096aa92445cf0a8baa8e929084
- https://gist.github.com/huanglei3/ec9090096aa92445cf0a8baa8e929084
- https://github.com/huanglei3/lrzip-next-poc/tree/main
- https://github.com/huanglei3/lrzip-next-poc/tree/main
- https://github.com/pete4abw/lrzip-next/issues/132
- https://github.com/pete4abw/lrzip-next/issues/132