Displaying 1 result from an estimated 1 matches for "206a81c18401".
2024 Oct 16
0
Bug#1085137: libxen: Libxen Includes Code Similar to LZO Decompressor with a Known CVE
...> Version: 4.17.3
> Severity: normal
> X-Debbugs-Cc: mariamarutunian at gmail.com
>
> Dear Maintainer,
> A vulnerability identified as CVE-2014-4608 was discovered and fixed
in LZO decompressor in the Linux kernel with the following commit:
https://github.com/torvalds/linux/commit/206a81c18401c0cde6e579164f752c4b147324ce.
Which amended the "lzo1x_decompress_safe" function located in
lib/lzo/lzo1x_decompress_safe.c file.
> Xen project contains a similar "lzo1x_decompress_safe" function in the
xen/common/lzo.c file, which has not been fixed.
Linux commit 206a81c1840...