VYPR
Unrated severityNVD Advisory· Published Mar 18, 2008· Updated Jun 16, 2026

CVE-2008-1372

CVE-2008-1372

Description

bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • Bzip/Bzip213 versions
    cpe:2.3:a:bzip:bzip2:0.9:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:bzip:bzip2:0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5b:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5c:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5d:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9_a:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9_b:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9_c:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.3:*:*:*:*:*:*:*
    • (no CPE)range: <1.0.5

Patches

Vulnerability mechanics

References

46

News mentions

0

No linked articles in our index yet.