Back to search
CVE-2019-12900
Published: Jun 19, 2019
Modified: Jun 9, 2025
PUBLISHED
Description
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[debian-lts-announce] 20190624 [SECURITY] [DLA 1833-1] bzip2 security update
mailing-list
x_refsource_MLIST
USN-4038-2
vendor-advisory
x_refsource_UBUNTU
USN-4038-1
vendor-advisory
x_refsource_UBUNTU
20190715 [slackware-security] bzip2 (SSA:2019-195-01)
mailing-list
x_refsource_BUGTRAQ
[debian-lts-announce] 20190718 [SECURITY] [DLA 1833-2] bzip2 regression update
mailing-list
x_refsource_MLIST
openSUSE-SU-2019:1781
vendor-advisory
x_refsource_SUSE
FreeBSD-SA-19:18
vendor-advisory
x_refsource_FREEBSD
20190806 FreeBSD Security Advisory FreeBSD-SA-19:18.bzip2
mailing-list
x_refsource_BUGTRAQ
openSUSE-SU-2019:1918
vendor-advisory
x_refsource_SUSE
USN-4146-1
vendor-advisory
x_refsource_UBUNTU
USN-4146-2
vendor-advisory
x_refsource_UBUNTU
[debian-lts-announce] 20191010 [SECURITY] [DLA 1953-1] clamav security update
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20191014 [SECURITY] [DLA 1953-2] clamav regression update
mailing-list
x_refsource_MLIST
openSUSE-SU-2019:2595
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2019:2597
vendor-advisory
x_refsource_SUSE
[kafka-users] 20200413 CVEs for the dependency software guava and rocksdbjni of Kafka
mailing-list
x_refsource_MLIST
https://www.oracle.com/security-alerts/cpuoct2020.html
x_refsource_MISC
[flink-user] 20210716 Flink 1.13.1 - Vulnerabilities CVE-2019-12900 for librocksdbjni
mailing-list
x_refsource_MLIST
[flink-user] 20210717 Re: Flink 1.13.1 - Vulnerabilities CVE-2019-12900 for librocksdbjni
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now