VYPR
Unrated severityNVD Advisory· Published Jul 3, 2014· Updated Jun 17, 2026

CVE-2014-4611

CVE-2014-4611

Description

Integer overflow in the LZ4 algorithm implementation, as used in Yann Collet LZ4 before r118 and in the lz4_uncompress function in lib/lz4/lz4_decompress.c in the Linux kernel before 3.15.2, on 32-bit platforms might allow context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted Literal Run that would be improperly handled by programs not complying with an API limitation, a different vulnerability than CVE-2014-4715.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Linux/Kernel2 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <3.15.2
    • (no CPE)range: < 3.15.2
  • Yann Collet/LZ4llm-fuzzy
    Range: < r118

Patches

Vulnerability mechanics

References

31

News mentions

0

No linked articles in our index yet.