ALSA-2021:2575

[ALSA-2021:2575] Moderate: lz4 security update

Type:

security

Severity:

moderate

Release date:

2023-03-13

Description:

The lz4 packages provide support for LZ4, a very fast, lossless compression algorithm that provides compression speeds of 400 MB/s per core and scales with multicore CPUs. It also features an extremely fast decoder that reaches speeds of multiple GB/s per core and typically reaches RAM speed limits on multicore systems.

Security Fix(es):

* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	lz4-libs-1.8.3-3.el8_4.aarch64.rpm	074068a3a1afa65786fc0ff0355257d667f0bb518a40aa9e8b8e7919b060e941
aarch64	lz4-devel-1.8.3-3.el8_4.aarch64.rpm	6decf7e8abacd348602b2f49b871dc2c4d07e3744e3830e29e0621c949d6c188
aarch64	lz4-1.8.3-3.el8_4.aarch64.rpm	8ec3aa1eb931dc0f53bc9afba786b7c83309330cc280d42392e9985fe7a22b8d
i686	lz4-devel-1.8.3-3.el8_4.i686.rpm	8cb366678248f70dedc630e48abd06259b2a9face1810940898912dc346e3604
i686	lz4-devel-1.8.3-3.el8_4.i686.rpm	8cb366678248f70dedc630e48abd06259b2a9face1810940898912dc346e3604
i686	lz4-libs-1.8.3-3.el8_4.i686.rpm	f45563547a5535594364e34a8504d329e8d675e1276136616c681b96b6a73f81
i686	lz4-libs-1.8.3-3.el8_4.i686.rpm	f45563547a5535594364e34a8504d329e8d675e1276136616c681b96b6a73f81
ppc64le	lz4-libs-1.8.3-3.el8_4.ppc64le.rpm	3ed7ea2cf7e4e9dfa7dad79a3c80fa7f19ebd44a8ee3824ad6c4a130f0549409
ppc64le	lz4-devel-1.8.3-3.el8_4.ppc64le.rpm	8bb3c24ae1e0fb381c7d871cd37be4bb090bd2e5961c89c3ce19ce34670c7cea
ppc64le	lz4-1.8.3-3.el8_4.ppc64le.rpm	b9e6e88d0065460b307273ff34c48d08228c610520544f162a323e863260f05f
x86_64	lz4-devel-1.8.3-3.el8_4.x86_64.rpm	aeb082ad53634e53204ad86294c9b90c464c6d652f7654ae24fb0338c010e307
x86_64	lz4-devel-1.8.3-3.el8_4.x86_64.rpm	aeb082ad53634e53204ad86294c9b90c464c6d652f7654ae24fb0338c010e307
x86_64	lz4-libs-1.8.3-3.el8_4.x86_64.rpm	cfbcbdf96b63b144f537fa3d2d10a68b91c8c47ad816de7179c8f2126cbf41b9
x86_64	lz4-libs-1.8.3-3.el8_4.x86_64.rpm	cfbcbdf96b63b144f537fa3d2d10a68b91c8c47ad816de7179c8f2126cbf41b9
x86_64	lz4-1.8.3-3.el8_4.x86_64.rpm	f43a8fa973b8a3ae94fc568f902df56153c1bf6cd391991d69fd59c660a45531

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.