CVE-2023-37188 | C-Blosc2 up to 2.9.2 zfp/blosc2-zfp.c zfp_rate_decompress null pointer dereference (Issue 521)

Inserito da Angelo Barbosa | Dic 25, 2023 | CVE

A vulnerability, which was classified as problematic, was found in C-Blosc2 up to 2.9.2. This affects the function zfp_rate_decompress of the file zfp/blosc2-zfp.c. The manipulation leads to null pointer dereference.

This vulnerability is uniquely identified as CVE-2023-37188. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-37188 | C-Blosc2 up to 2.9.2 zfp/blosc2-zfp.c zfp_rate_decompress null pointer dereference (Issue 521)

Post correlati

CVE-2024-32668 | FreeBSD USB off-by-one

CVE-2024-0848 | AA Cash Calculator Plugin up to 1.0 on WordPress Invoice cross site scripting

CVE-2024-38453 | SalesForce Avalara for Salesforce CPQ App up to 6.x API Key information disclosure

CVE-2023-46386 | LOYTEC LINX-151/LINX-212 SMTP Client registry.xml credentials storage