trifectatechfoundation/bzip2-rs

Releases17

Frequency6 months 2 weeks

Last Release 8 months ago

Stars169

libbz2 (bzip2 compression) bindings for Rust

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-22895 ↗	Jan 10, 2023Tuesday, 10 January 2023, 01:15	7.5 HIGH	—
The bzip2 crate before 0.4.4 for Rust allow attackers to cause a denial of service via a large file that triggers an integer overflow in mem.rs. NOTE: this is unrelated to the https://crates.io/crates/bzip2-rs product.