CVE-2023-29415

Name of the Vulnerable Software and Affected Versions bzip3 versions prior to 1.3.0

Description An issue was discovered in libbzip3.a in bzip3. A denial of service (process hang) can occur with a crafted archive because bzip3 does not follow the required procedure for interacting with libsais.

Recommendations For versions prior to 1.3.0, update to version 1.3.0 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted archives that may cause the process hang until a patch is available.