CVE-2014-4608
CVSS v2.0
7.5 (High)
EPSS
1.11 % (85th)
Affected Products
5
Advisories
20
NVD Status
Modified
Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompressor in the Linux kernel before 3.15.2 allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Literal Run. NOTE: the author of the LZO algorithms says "the Linux kernel is not affected; media hype.
Weaknesses
- CWE-190
- Integer Overflow or Wraparound
- CVE Status
- PUBLISHED
- NVD Status
- Modified
- CNA
- MITRE
- Published Date
-
2014-07-03 04:22:15
(10 years ago) - Updated Date
-
2024-08-06 12:15:20
(5 weeks ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...