Name of the Vulnerable Software and Affected Versions lz4-compress (affected versions not specified)

Description The lz4-compress crate is no longer maintained by its developers. As an alternative, users can consider lz4-compression, which is a maintained fork of lz4-compress. Another option is lz-fear, although it is compatible with the reference LZ4 implementation in C but not with lz4-compress.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.