Vulnerabilities > Bzip > Bzip2 > 0.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-03-18 | CVE-2008-1372 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Bzip Bzip2 bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats. | 4.3 |
2005-05-02 | CVE-2005-0953 | Unspecified vulnerability in Bzip Bzip2 Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete. | 3.7 |