定价企业版

CVE-2023-31102

7.8HIGH

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.

发布于: 11/3/2023更新于: 11/21/2024

在NVD查看在MITRE查看

描述

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.

AI分析AI驱动

受影响产品

7-zip7-zip

linuxlinux_kernel

-

netappactive_iq_unified_manager

-

netapponcommand_workflow_automation

-

参考资料

https://ds-security.com/post/integer-overflow-in-7-zip-cve-2023-31102/
https://security.netapp.com/advisory/ntap-20231110-0007/
Third Party Advisory
https://sourceforge.net/p/sevenzip/discussion/45797/thread/713c8a8269/
Issue TrackingRelease Notes
https://www.7-zip.org/download.html
Product
https://www.zerodayinitiative.com/advisories/ZDI-23-1165/
Third Party AdvisoryVDB Entry
https://ds-security.com/post/integer-overflow-in-7-zip-cve-2023-31102/
https://security.netapp.com/advisory/ntap-20231110-0007/
Third Party Advisory
https://sourceforge.net/p/sevenzip/discussion/45797/thread/713c8a8269/
Issue TrackingRelease Notes
https://www.7-zip.org/download.html
Product
https://www.zerodayinitiative.com/advisories/ZDI-23-1165/
Third Party AdvisoryVDB Entry