Search for packages
| purl | pkg:deb/debian/7zip@24.05%2Bdfsg-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-hgkj-wq8u-q3eh | The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) contains a heap-based buffer overflow that allows an attacker to overwrite two bytes at multiple offsets beyond the allocated buffer size: buffer+512*i-2, for i=9, i=10, i=11, etc. |
CVE-2023-52168
|
| VCID-uebs-8u4d-3bd1 | The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The bytes read beyond the intended buffer are presented as a part of a filename listed in the file system image. This has security relevance in some known web-service use cases where untrusted users can upload files and have them extracted by a server-side 7-Zip process. |
CVE-2023-52169
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T11:42:58.795047+00:00 | Debian Importer | Fixing | VCID-hgkj-wq8u-q3eh | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T09:05:41.550709+00:00 | Debian Importer | Fixing | VCID-uebs-8u4d-3bd1 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-13T07:59:07.834519+00:00 | Debian Importer | Fixing | VCID-hgkj-wq8u-q3eh | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-11T18:05:36.471354+00:00 | Debian Importer | Fixing | VCID-uebs-8u4d-3bd1 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-02T17:12:30.274757+00:00 | Debian Importer | Fixing | VCID-hgkj-wq8u-q3eh | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-02T17:03:47.804455+00:00 | Debian Importer | Fixing | VCID-uebs-8u4d-3bd1 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |