GoogleOSV:HSEC-2024-0002out-of-bounds write when there are many bzip2 selectors
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.02 Low
EPSS
Percentile
88.9%
out-of-bounds write when there are many bzip2 selectors
A malicious bzip2 payload may produce a memory corruption
resulting in a denial of service and/or remote code execution.
Network services or command line utilities decompressing
untrusted bzip2 payloads are affected.
Note that the exploitation of this bug relies on an undefined
behavior that appears to be handled safely by current compilers.
The Haskell libraires are vulnerable when they are built using
the bundled C library source code, which is the default
in most cases.
| CPE | Name | Operator | Version |
|---|---|---|---|
| bzlib-conduit | eq | 0.1.0.1 | |
| bz2 | eq | 0.1.1.0 | |
| bzlib | eq | 0.5.0.5 | |
| bz2 | eq | 1.0.0.0 | |
| bzlib | eq | 0.4.0.3 | |
| bzlib | eq | 0.5.0.3 | |
| bzlib-conduit | eq | 0.2.1.2 | |
| bzlib-conduit | eq | 0.3.0 | |
| bzlib-conduit | eq | 0.1.0.0 | |
| bzlib | eq | 0.4 |
Related
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.02 Low
EPSS
Percentile
88.9%