DEBIAN-CVE-2023-31102 — Vulnetix

DEBIAN-CVE-2023-31102 PUBLISHED CVSS 7.800000190734863 HIGH

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:13	p7zip	0, 0, 0
Debian:11	p7zip	0, 16.02+dfsg-8, 16.02+transitional.1
Debian:12	p7zip	0, 16.02+dfsg, 0
Debian:13	7zip	0, 0, 0
Debian:14	7zip	0, 0, 0
Debian:12	7zip	24.08+dfsg-1, 24.08+dfsg-2, 24.09+dfsg-2~bpo12+1

Timeline

Nov 3, 2023 CVE Published
May 16, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2023-31102 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›