rpm package
opensuse/xz&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/xz&distro=openSUSE%20Leap%2015.6
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-31115 | Hig | — | < 5.4.1-150600.3.3.1 | 5.4.1-150600.3.3.1 | Apr 3, 2025 | XZ Utils provide a general-purpose data-compression library plus command-line tools. In XZ Utils 5.3.3alpha to 5.8.0, the multithreaded .xz decoder in liblzma has a bug where invalid input can at least result in a crash. The effects include heap use after free and writing to an a |
- affected < 5.4.1-150600.3.3.1fixed 5.4.1-150600.3.3.1
XZ Utils provide a general-purpose data-compression library plus command-line tools. In XZ Utils 5.3.3alpha to 5.8.0, the multithreaded .xz decoder in liblzma has a bug where invalid input can at least result in a crash. The effects include heap use after free and writing to an a