VYPR

rpm package

suse/p7zip&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7

pkg:rpm/suse/p7zip&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7

Vulnerabilities (2)

  • CVE-2025-53817Jul 17, 2025
    affected < 16.02-150200.14.15.1fixed 16.02-150200.14.15.1

    7-Zip is a file archiver with a high compression ratio. 7-Zip supports extracting from Compound Documents. Prior to version 25.0.0, a null pointer dereference in the Compound handler may lead to denial of service. Version 25.0.0 contains a fix cor the issue.

  • CVE-2022-47069Aug 22, 2023
    affected < 16.02-150200.14.15.1fixed 16.02-150200.14.15.1

    p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerability via the function NArchive::NZip::CInArchive::FindCd(bool) at CPP/7zip/Archive/Zip/ZipIn.cpp. NOTE: the Supplier has found that this is not a buffer overflow; at most an out-of-bounds read can occur.