CVE-2014-4715

Name of the Vulnerable Software and Affected Versions LZ4 versions prior to r119

Description The issue is related to errors in number processing in the LZ4 lossless data compression algorithm. It may allow a remote attacker to cause a denial of service, potentially through memory corruption, by exploiting the vulnerability with a crafted Literal Run.

Recommendations For versions prior to r119, update to version r119 or later to resolve the issue. As a temporary workaround, consider restricting the use of the LZ4 compression algorithm on 32-bit platforms until a patch is available.