AZL-79239

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79239.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-79239

Upstream

CVE-2026-3381

Published

2026-03-05T02:16:52Z

Modified

2026-04-21T04:34:40.638114Z

Summary

CVE-2026-3381 affecting package blosc 1.21.4-2

Details

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib.

Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for CVE-2026-27171.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-3381

Affected packages

Azure Linux:2 / blosc

Package

Name: blosc
Purl: pkg:rpm/azure-linux/blosc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.21.4-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79239.json"