Critical severity9.8NVD Advisory· Published Jan 23, 2017· Updated Jun 17, 2026
CVE-2016-1925
CVE-2016-1925
Description
Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a large header size value for the (1) level0 or (2) level1 header in a lha archive, which triggers a buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- cpe:2.3:a:lha_for_unix_project:lha_for_unix:-:*:*:*:*:*:*:*
- osv-coords2 versionspkg:rpm/suse/lha&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/lha&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4
< 1.14.0.894-3.1+ 1 more
- (no CPE)range: < 1.14.0.894-3.1
- (no CPE)range: < 1.14.0.894-3.1
Patches
Vulnerability mechanics
References
3- www.openwall.com/lists/oss-security/2016/01/18/3nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2016/01/18/8nvdMailing ListThird Party Advisory
- security.gentoo.org/glsa/202007-42nvd
News mentions
0No linked articles in our index yet.