Skip to main content

Divide By Zero

CVE-2017-8842

Severity Medium
Score 5.5/10

Summary

The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted archive.

  • LOW
  • LOCAL
  • NONE
  • UNCHANGED
  • REQUIRED
  • NONE
  • NONE
  • HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

  • Published