CVE-2023-29418: Out-of-bounds Read

April 6, 2023 (updated November 7, 2023)

An issue was discovered in libbzip3.a in bzip3 before 1.2.3. There is an xwrite out-of-bounds read.

References

github.com/kspalaiologos/bzip3/commit/aae16d107f804f69000c09cd92027a140968cc9d
github.com/kspalaiologos/bzip3/compare/1.2.2...1.2.3
github.com/kspalaiologos/bzip3/issues/92
nvd.nist.gov/vuln/detail/CVE-2023-29418

Code Behaviors & Features

Detect and mitigate CVE-2023-29418 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →