cloudflare/golz4

Releases0

Stars100

Golang interface to LZ4 compression

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2014-125026 ↗	Dec 27, 2022Tuesday, 27 December 2022, 22:15	9.8 CRITICAL	—
LZ4 bindings use a deprecated C API that is vulnerable to memory corruption, which could lead to arbitrary code execution if called with untrusted user input.