CVE-2023-29416 Information

Description

An issue was discovered in libbzip3.a in bzip3 before 1.3.0. A bz3_decode_block out-of-bounds write can occur with a crafted archive because bzip3 does not follow the required procedure for interacting with libsais.

Reference

https://github.com/kspalaiologos/bzip3/issues/92 https://github.com/kspalaiologos/bzip3/compare/1.2.3…1.3.0 https://github.com/kspalaiologos/bzip3/commit/bfa5bf82b53715dfedf048e5859a46cf248668ff