2021-11-15 00:00:00
JFROG
PUBLISHED
An out-of-bounds heap read in Busyboxs unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed. This can be triggered by any applet/format that