Vulnerabilities > Squashfs Project

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-13	CVE-2015-4646	Improper Input Validation vulnerability in Squashfs Project Squashfs (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. network low complexity squashfs-project CWE-20	5.0
2017-03-17	CVE-2015-4645	Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service (application crash) via a crafted input, which triggers a stack-based buffer overflow. network squashfs-project fedoraproject CWE-190	4.3
2012-07-19	CVE-2012-4025	Integer Overflow OR Wraparound vulnerability in Squashfs Project Squashfs Integer overflow in the queue_init function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted block_log field in the superblock of a .sqsh file, leading to a heap-based buffer overflow. network squashfs-project CWE-190	6.8
2012-07-19	CVE-2012-4024	Out-Of-Bounds Write vulnerability in Squashfs Project Squashfs Stack-based buffer overflow in the get_component function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted list file (aka a crafted file for the -ef option). network squashfs-project CWE-787	6.8

Vulnerabilities > Squashfs Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Squashfs Project"}]}