VYPR
Unrated severityNVD Advisory· Published Sep 28, 2010· Updated Jun 16, 2026

CVE-2010-0405

CVE-2010-0405

Description

Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

27
  • Bzip/Bzip223 versions
    cpe:2.3:a:bzip:bzip2:*:*:*:*:*:*:*:*+ 22 more
    • cpe:2.3:a:bzip:bzip2:*:*:*:*:*:*:*:*range: <=1.0.5
    • cpe:2.3:a:bzip:bzip2:0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.0a:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.0b:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.0c:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5_a:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5_b:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5b:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5_c:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5c:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5_d:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9.5d:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9_a:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9_b:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:0.9_c:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:bzip:bzip2:1.0.4:*:*:*:*:*:*:*
    • (no CPE)range: <1.0.6
  • Bzip/Libzip22 versions
    cpe:2.3:a:libzip2:libzip2:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:libzip2:libzip2:*:*:*:*:*:*:*:*range: <=1.0.5
    • (no CPE)range: <1.0.6
  • osv-coords2 versions
    < 1.0.6-37.82+ 1 more
    • (no CPE)range: < 1.0.6-37.82
    • (no CPE)range: < 0.99.2-4.1

Patches

Vulnerability mechanics

References

34

News mentions

0

No linked articles in our index yet.