First published: Thu Jun 10 2021(Updated: )
A null pointer dereference was discovered in ucompthread in stream.c in Irzip 0.631 which allows attackers to cause a denial of service (DOS) via a crafted compressed file.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Long Range Zip Project Long Range Zip | =0.631 | |
Debian Debian Linux | =9.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-27345 is a null pointer dereference vulnerability in ucompthread in Irzip 0.631.
CVE-2021-27345 allows attackers to cause a denial of service (DOS) by exploiting a null pointer dereference in Irzip 0.631.
Irzip 0.631 and Debian Linux 9.0 are affected by CVE-2021-27345.
CVE-2021-27345 has a severity rating of medium (5.5) according to the Common Vulnerability Scoring System (CVSS) v3.1.
Update Irzip to a patched version, such as version 0.632, to fix CVE-2021-27345.