The read_buf function in stream.c in rzip 2.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted archive.

Related CVEs

CVE-2017-8364

Key Information

GHSA ID

GHSA-jg3x-m5j7-gpqv

Published

May 13, 2022 1:27 AM

Last Modified

April 20, 2025 3:37 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: August 31, 2025 6:33 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.