rpm package
opensuse/lrzip&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/lrzip&distro=openSUSE%20Tumbleweed
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-15570 | Med | 5.3 | < 0.660-1.1 | 0.660-1.1 | Feb 10, 2026 | A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzma_decompress_buf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project wa | |
| CVE-2025-9396 | Low | 3.3 | < 0.660-1.1 | 0.660-1.1 | Aug 24, 2025 | A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function __GI_____strtol_l_internal of the file strtol_l.c. Performing manipulation results in null pointer dereference. The attack is only possible with local access. The exploit has been release |
- affected < 0.660-1.1fixed 0.660-1.1
A vulnerability was found in ckolivas lrzip up to 0.651. This impacts the function lzma_decompress_buf of the file stream.c. Performing a manipulation results in use after free. Attacking locally is a requirement. The exploit has been made public and could be used. The project wa
- affected < 0.660-1.1fixed 0.660-1.1
A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function __GI_____strtol_l_internal of the file strtol_l.c. Performing manipulation results in null pointer dereference. The attack is only possible with local access. The exploit has been release