Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause a crash and a denial of service when decoding malformed 7z files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
p7zip 空指针逆向引用漏洞
Vulnerability Description
p7zip是一套用于类Unix系统中的数据压缩、解压缩软件(也就是Win下的7z压缩软件)。 p7zip 16.02及之前的版本中的CPP/7zip/Archive/7z/7zIn.cpp文件中的‘CInArchive::ReadAndDecodePackedStreams’函数存在安全漏洞。攻击者可通过解码畸形的7z文件利用该漏洞造成拒绝服务(崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A