Debian Patches
Status for lrzip/0.660-1
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| CVE-2023-39741.patch | backport hsize validation for empty PCOMP Backport hsize validation from libzpaq v7.15 This prevents Denial of Service via a crafted file due to a heap overflow via the ibzpaq::PostProcessor::write(int) function. |
Laszlo Boszormenyi (GCS) <gcs@debian.org> | no | debian upstream | backport, https://mattmahoney.net/dc/zpaq.html | 2023-12-22 |