Lucene search
Veracode Vulnerability DatabaseVERACODE:30389HistoryMay 08, 2021 - 2:25 p.m.
Denial Of Service (DoS)
2021-05-0814:25:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
24
0.001 Low
EPSS
Percentile
51.1%
lz4 is vulnerable to denial of service. An integer overflow occurs when one of the memmove arguments is set to negative, resulting in an application crash.
References
access.redhat.com/errata/RHBA-2021:2854
access.redhat.com/errata/RHSA-2021:2575
access.redhat.com/errata/RHSA-2022:1345
access.redhat.com/errata/RHSA-2022:5606
access.redhat.com/errata/RHSA-2022:6407
access.redhat.com/security/cve/CVE-2021-3520
bugzilla.redhat.com/show_bug.cgi?id=1954559
security-tracker.debian.org/tracker/CVE-2021-3520
security.netapp.com/advisory/ntap-20211104-0005/
www.oracle.com//security-alerts/cpujul2021.html
www.oracle.com/security-alerts/cpuapr2022.html
www.oracle.com/security-alerts/cpuoct2021.html
Related
nessus
nessus
Debian DSA-4919-1 : lz4 - security update
2021-05-24 00:00:00
Oracle Linux 8 : lz4 (ELSA-2021-2575)
2021-06-30 00:00:00
openSUSE 15 Security Update : lz4 (openSUSE-SU-2021:1825-1)
2021-07-16 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:1825-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for lz4 (EulerOS-SA-2021-2892)
2021-12-31 00:00:00
Huawei EulerOS: Security Advisory for lz4 (EulerOS-SA-2021-2474)
2021-09-24 00:00:00
prion
prion
Integer overflow
2021-06-02 13:15:00
debian
debian
[SECURITY] [DLA 2657-1] lz4 security update
2021-05-12 10:23:19
[SECURITY] [DSA 4919-1] lz4 security update
2021-05-21 12:51:40
[SECURITY] [DSA 4919-1] lz4 security update
2021-05-21 12:51:40
cve
cve
CVE-2021-3520
2021-06-02 13:15:13
debiancve
debiancve
CVE-2021-3520
2021-06-02 13:15:13
github
github
lz4-sys vulnerable to memory corruption via issue in liblz4
2022-09-01 22:24:55
oraclelinux
oraclelinux
lz4 security update
2021-06-30 00:00:00
cloudfoundry
cloudfoundry
USN-4968-1: LZ4 vulnerability | Cloud Foundry
2021-06-11 00:00:00
rustsec
rustsec
Memory corruption in liblz4
2022-08-25 12:00:00
osv
osv
lz4 - security update
2021-05-21 00:00:00
Moderate: lz4 security update
2021-06-29 13:43:40
Moderate: lz4 security update
2021-06-29 13:43:40
redhatcve
redhatcve
CVE-2021-3520
2021-04-28 11:48:45
suse
suse
Security update for lz4 (important)
2021-07-11 00:00:00
Security update for lz4 (important)
2021-05-22 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0255
2021-06-17 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0138
2023-11-08 00:00:00
Critical Photon OS Security Update - PHSA-2021-3.0-0255
2021-06-18 00:00:00
redhat
redhat
(RHSA-2021:2575) Moderate: lz4 security update
2021-06-29 13:43:40
gentoo
gentoo
LZ4: Memory Corruption
2024-06-22 00:00:00
alpinelinux
alpinelinux
CVE-2021-3520
2021-06-02 13:15:13
archlinux
archlinux
[ASA-202105-27] lz4: denial of service
2021-05-25 00:00:00
rocky
rocky
lz4 security update
2021-06-29 13:43:40
mageia
mageia
Updated lz4 packages fix a security vulnerability
2021-06-08 17:33:02
ubuntucve
ubuntucve
CVE-2021-3520
2021-04-30 00:00:00
ubuntu
ubuntu
LZ4 vulnerability
2021-05-31 00:00:00
LZ4 vulnerability
2021-05-26 00:00:00
nvd
nvd
CVE-2021-3520
2021-06-02 13:15:13
cvelist
cvelist
CVE-2021-3520
2021-06-02 12:32:32
almalinux
almalinux
Moderate: lz4 security update
2021-06-29 13:43:40
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00