Description

Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block.

Remediation

References

CVE-2016-3189

Related Vulnerabilities

jQuery Validation Uncontrolled Resource Consumption Vulnerability (CVE-2021-21252)

WordPress Plugin Larsens Calender Cross-Site Scripting (1.2)

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.22)

Oracle JRE CVE-2022-21360 Vulnerability (CVE-2022-21360)

WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Security Bypass (16.26.6)

Severity

Medium

Classification

CVE-2016-3189 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities