CVE-2014-4608

by Fred · 02/07/2014

** DISPUTED ** Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompressor in the Linux kernel before 3.15.2 allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Literal Run. NOTE: the author of the LZO algorithms says "the Linux kernel is *not* affected; media hype."

Date published : 2014-07-02

http://www.securityfocus.com/bid/68214

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=206a81c18401c0cde6e579164f752c4b147324ce

CVE-2014-4608

Similar

Recent Posts

Categories

CVE-2014-4608

Share this:

Similar

Recent Posts

Categories

Tags