Back to search
CVE-2016-3189
Published: Jun 30, 2016
Modified: Jun 9, 2025
PUBLISHED
Description
Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20160620 CVE-2016-3189: bzip2 use-after-free on bzip2recover
mailing-list
x_refsource_MLIST
1036132
vdb-entry
x_refsource_SECTRACK
91297
vdb-entry
x_refsource_BID
GLSA-201708-08
vendor-advisory
x_refsource_GENTOO
[debian-lts-announce] 20190624 [SECURITY] [DLA 1833-1] bzip2 security update
mailing-list
x_refsource_MLIST
USN-4038-2
vendor-advisory
x_refsource_UBUNTU
USN-4038-1
vendor-advisory
x_refsource_UBUNTU
20190715 [slackware-security] bzip2 (SSA:2019-195-01)
mailing-list
x_refsource_BUGTRAQ
FreeBSD-SA-19:18
vendor-advisory
x_refsource_FREEBSD
20190806 FreeBSD Security Advisory FreeBSD-SA-19:18.bzip2
mailing-list
x_refsource_BUGTRAQ
[kafka-users] 20200413 CVEs for the dependency software guava and rocksdbjni of Kafka
mailing-list
x_refsource_MLIST
https://www.oracle.com/security-alerts/cpuoct2020.html
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=1319648
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now