CVE-2025-62813

描述

LZ4 through 1.10.0 allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact when the application processes untrusted LZ4 frames. For example, LZ4F_createCDict_advanced in lib/lz4frame.c mishandles NULL checks.

受影響套件(1)

• Debian/lz4from 0

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-62813