CVE-2023-31102
7.8HIGHPpmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.
Published: 11/3/2023Updated: 11/21/2024
Description
Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.
AI AnalysisPowered by AI
Affected Products
7-zip7-zip
linuxlinux_kernel
-
netappactive_iq_unified_manager
-
netapponcommand_workflow_automation
-
References
- https://ds-security.com/post/integer-overflow-in-7-zip-cve-2023-31102/
- https://security.netapp.com/advisory/ntap-20231110-0007/Third Party Advisory
- https://sourceforge.net/p/sevenzip/discussion/45797/thread/713c8a8269/Issue TrackingRelease Notes
- https://www.7-zip.org/download.htmlProduct
- https://www.zerodayinitiative.com/advisories/ZDI-23-1165/Third Party AdvisoryVDB Entry
- https://ds-security.com/post/integer-overflow-in-7-zip-cve-2023-31102/
- https://security.netapp.com/advisory/ntap-20231110-0007/Third Party Advisory
- https://sourceforge.net/p/sevenzip/discussion/45797/thread/713c8a8269/Issue TrackingRelease Notes
- https://www.7-zip.org/download.htmlProduct
- https://www.zerodayinitiative.com/advisories/ZDI-23-1165/Third Party AdvisoryVDB Entry