Name of the Vulnerable Software and Affected Versions blosc2 (affected versions not specified)

Description The issue is related to a heap-buffer-overflow read. Technical details about exploitation include the function names blosc run decompression with context and blosc2 decompress. The crash occurs in the fuzz decompress chunk.c file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.