Ubuntu CVE Tracker
Home
Main
Universe
Partner
CVE-2022-28044
Priority
Medium
Description
Irzip v0.640 was discovered to contain a heap memory corruption via the
component lrzip.c:initialise_control.
References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28044
https://github.com/ckolivas/lrzip/issues/216
https://github.com/ckolivas/lrzip/commit/5faf80cd53ecfd16b636d653483144cd12004f46
Notes
Package
Source:
lrzip
(
LP
Ubuntu
Debian
)
Upstream:
released
(0.650-1)
Ubuntu 18.04 LTS
:
needed
Ubuntu 20.04 LTS
:
needed
Ubuntu 21.10
:
needed
Ubuntu 22.04 LTS
:
needs-triage
Ubuntu 14.04 ESM:
needed
Patches:
More Information
Mitre
NVD
Launchpad
Debian
Updated
: 2022-06-10 14:01:51 UTC (commit
22cd97abab61e5eccab4070a258ab5d6a94b972b
)