Displaying 2 results from an estimated 2 matches for "lzo1x_decompress_safe".
2024 Oct 16
0
Bug#1085137: libxen: Libxen Includes Code Similar to LZO Decompressor with a Known CVE
...amarutunian at gmail.com
>
> Dear Maintainer,
> A vulnerability identified as CVE-2014-4608 was discovered and fixed
in LZO decompressor in the Linux kernel with the following commit:
https://github.com/torvalds/linux/commit/206a81c18401c0cde6e579164f752c4b147324ce.
Which amended the "lzo1x_decompress_safe" function located in
lib/lzo/lzo1x_decompress_safe.c file.
> Xen project contains a similar "lzo1x_decompress_safe" function in the
xen/common/lzo.c file, which has not been fixed.
Linux commit 206a81c18401 ("lzo: properly check for overruns") was
reverted a month later...
2013 Mar 03
0
[linux-linus test] 16875: regressions - trouble: broken/fail/pass
...things use LZO"
* tag ''lzo-update-signature-20130226'' of git://github.com/markus-oberhumer/linux:
crypto: testmgr - update LZO compression test vectors
lib/lzo: Update LZO compression to current upstream version
lib/lzo: Rename lzo1x_decompress.c to lzo1x_decompress_safe.c