CVE-2025-15570 | ckolivas lrzip up to 0.651 stream.c lzma_decompress_buf use after free

Inserito da Angelo Barbosa | Feb 8, 2026 | CVE

A vulnerability was found in ckolivas lrzip up to 0.651. It has been rated as critical. This impacts the function lzma_decompress_buf of the file stream.c. Performing a manipulation results in use after free.

This vulnerability is known as CVE-2025-15570. Attacking locally is a requirement. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2025-15570 | ckolivas lrzip up to 0.651 stream.c lzma_decompress_buf use after free

Post correlati

CVE-2025-13556 | Campcodes Online Polling System 1.0 /admin/checklogin.php myusername sql injection

CVE-2025-57838 | Honor MagicOS 8.0.0.135 information disclosure

CVE-2024-38254 | Microsoft Windows up to Server 2022 23H2 Authentication uninitialized resource

CVE-2024-5565 | Vanna Library Ask API injection (jfsa-2024-0010)