CVE-2023-39743

Name of the Vulnerable Software and Affected Versions lrzip-next LZMA version 23.01

Description The issue is related to an access violation in the component /bz3 decode block, located in the src/libbz3.c file. This access violation can be exploited, potentially leading to unintended consequences.

Recommendations For lrzip-next LZMA version 23.01, consider restricting access to the /bz3 decode block component in the src/libbz3.c file as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.