VYPR

rpm package

almalinux/jmc

pkg:rpm/almalinux/jmc

Vulnerabilities (1)

  • CVE-2025-66566HigDec 5, 2025
    affected < 8.2.0-18.el9_7.2fixed 8.2.0-18.el9_7.2

    yawkat LZ4 Java provides LZ4 compression for Java. Insufficient clearing of the output buffer in Java-based decompressor implementations in lz4-java 1.10.0 and earlier allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the