CVE-2024-3204
- EPSS 0.31%
- Veröffentlicht 02.04.2024 22:15:11
- Zuletzt bearbeitet 25.04.2025 14:45:32
A vulnerability has been found in c-blosc2 up to 2.13.2 and classified as critical. Affected by this vulnerability is the function ndlz4_decompress of the file /src/c-blosc2/plugins/codecs/ndlz/ndlz4x4.c. The manipulation leads to heap-based buffer o...
CVE-2024-3203
- EPSS 0.42%
- Veröffentlicht 02.04.2024 22:15:10
- Zuletzt bearbeitet 25.04.2025 14:45:29
A vulnerability, which was classified as critical, was found in c-blosc2 up to 2.13.2. Affected is the function ndlz8_decompress of the file /src/c-blosc2/plugins/codecs/ndlz/ndlz8x8.c. The manipulation leads to heap-based buffer overflow. It is poss...
CVE-2023-37187
- EPSS 0.19%
- Veröffentlicht 25.12.2023 07:15:09
- Zuletzt bearbeitet 25.04.2025 16:52:59
C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the zfp/blosc2-zfp.c zfp_acc_decompress. function.
CVE-2023-37188
- EPSS 0.19%
- Veröffentlicht 25.12.2023 07:15:09
- Zuletzt bearbeitet 25.04.2025 16:52:59
C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the function zfp_rate_decompress at zfp/blosc2-zfp.c.
CVE-2023-37185
- EPSS 0.19%
- Veröffentlicht 25.12.2023 07:15:08
- Zuletzt bearbeitet 25.04.2025 16:52:59
C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the function zfp_prec_decompress at zfp/blosc2-zfp.c.
CVE-2023-37186
- EPSS 0.19%
- Veröffentlicht 25.12.2023 07:15:08
- Zuletzt bearbeitet 25.04.2025 16:52:59
C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference in ndlz/ndlz8x8.c via a NULL pointer to memset.
CVE-2020-29367
- EPSS 0.13%
- Veröffentlicht 27.11.2020 20:15:11
- Zuletzt bearbeitet 25.04.2025 16:52:59
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data.