{"id":"USN-5171-1","summary":"lrzip vulnerabilities","details":"It was discovered that Long Range ZIP incorrectly handled certain\nspecially crafted lrz files. A remote attacker could possibly use this\nissue to cause a denial of service (crash) or other unspecified impact.\n","modified":"2026-02-10T04:42:24Z","published":"2021-12-06T12:51:27Z","related":["UBUNTU-CVE-2017-8844","UBUNTU-CVE-2017-8846","UBUNTU-CVE-2017-9928","UBUNTU-CVE-2017-9929","UBUNTU-CVE-2018-10685","UBUNTU-CVE-2018-11496","UBUNTU-CVE-2018-5650","UBUNTU-CVE-2018-5747","UBUNTU-CVE-2018-5786","UBUNTU-CVE-2018-9058"],"upstream":["CVE-2017-8844","CVE-2017-8846","CVE-2017-9928","CVE-2017-9929","CVE-2018-10685","CVE-2018-11496","CVE-2018-5650","CVE-2018-5747","CVE-2018-5786","CVE-2018-9058","UBUNTU-CVE-2017-8844","UBUNTU-CVE-2017-8846","UBUNTU-CVE-2017-9928","UBUNTU-CVE-2017-9929","UBUNTU-CVE-2018-10685","UBUNTU-CVE-2018-11496","UBUNTU-CVE-2018-5650","UBUNTU-CVE-2018-5747","UBUNTU-CVE-2018-5786","UBUNTU-CVE-2018-9058"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-5171-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-8844"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-8846"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-9928"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-9929"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-5650"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-5747"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-5786"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-9058"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-10685"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-11496"}],"affected":[{"package":{"name":"lrzip","ecosystem":"Ubuntu:18.04:LTS","purl":"pkg:deb/ubuntu/lrzip@0.631-1+deb9u1build0.18.04.1?arch=source&distro=bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.631-1+deb9u1build0.18.04.1"}]}],"versions":["0.631-1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"0.631-1+deb9u1build0.18.04.1","binary_name":"lrzip"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5171-1.json","cves_map":{"ecosystem":"Ubuntu:18.04:LTS","cves":[{"id":"CVE-2017-8844","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2017-8846","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"low"}]},{"id":"CVE-2017-9928","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2017-9929","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2018-5650","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2018-5747","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2018-5786","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2018-9058","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2018-10685","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2018-11496","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"type":"Ubuntu","score":"medium"}]}]}}}],"schema_version":"1.7.3"}