Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Lizard v1.0 and LZ5 v2.0 (the prior release, before the product was renamed), there is an unchecked buffer size during a memcpy in the Lizard_decompress_LIZv1 function (lib/lizard_decompress_liz.h). Remote attackers can leverage this vulnerability to cause a denial of service via a crafted input file, as well as achieve remote code execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lizard 安全漏洞
Vulnerability Description
Lizard(前称LZ5)是一套无损压缩软件。 Lizard 1.0版本和LZ5 2.0版本中的‘Lizard_decompress_LIZv1’函数(lib/lizard_decompress_liz.h文件)存在安全漏洞,该漏洞源于程序没有正确的检测缓冲区的大小。远程攻击者可借助特制的输入文件利用该漏洞造成拒绝服务或执行代码。
CVSS Information
N/A
Vulnerability Type
N/A