Information on source package p7zip

Available versions

Bug	bullseye	bookworm	trixie	sid	Description
CVE-2023-52168	vulnerable (no DSA, postponed)	vulnerable (no DSA)	fixed	fixed	The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...

Bug	bullseye	bookworm	trixie	sid	Description
CVE-2024-11612	vulnerable	vulnerable	fixed	fixed	7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ...
CVE-2023-52169	vulnerable	vulnerable	fixed	fixed	The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...
CVE-2022-47112	vulnerable	vulnerable	fixed	fixed	7-Zip 22.01 does not report an error for certain invalid xz files, inv ...
CVE-2022-47111	vulnerable	vulnerable	fixed	fixed	7-Zip 22.01 does not report an error for certain invalid xz files, inv ...
CVE-2022-47069	vulnerable	vulnerable	vulnerable	vulnerable	p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerabi ...

Bug	Description
CVE-2025-0411	7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows ...
CVE-2024-11477	7-Zip Zstandard Decompression Integer Underflow Remote Code Execution ...
CVE-2017-17969	Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeRe ...
CVE-2016-9296	A null pointer dereference bug affects the 16.02 and many old versions ...
CVE-2016-2335	The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9 ...
CVE-2016-2334	Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZli ...
CVE-2015-1038	p7zip 9.20.1 allows remote attackers to write to arbitrary files via a ...
CVE-2008-6536	Unspecified vulnerability in 7-zip before 4.5.7 has unknown impact and ...