bzip2

Releases25

Frequency5 months 2 weeks

Last Release 8 months ago

Downloads133M

Bindings to libbzip2 for bzip2 compression and decompression exposed as Reader/Writer streams.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-22895 ↗	Jan 10, 2023Tuesday, 10 January 2023, 01:15	7.5 HIGH	—
The bzip2 crate before 0.4.4 for Rust allow attackers to cause a denial of service via a large file that triggers an integer overflow in mem.rs. NOTE: this is unrelated to the https://crates.io/crates/bzip2-rs product.