Buffer overflow in Bzip2

CVE-2026-42250

bzip2 contains an off‑by‑one error in the bzip2recover utility. When processing a specially crafted file, the application performs an out‑of‑bounds write to a global buffer, resulting in memory corruption and a crash (denial of service). …

Vulnerability class: Buffer Overflow

EPSS: 0.000 (6.1th percentile) — read the EPSS interpretation.