{"id":"CVE-2014-4607","details":"Integer overflow in the LZO algorithm variant in Oberhumer liblzo2 and lzo-2 before 2.07 on 32-bit platforms might allow remote attackers to execute arbitrary code via a crafted Literal Run.","modified":"2026-01-27T04:12:48.326587Z","published":"2020-02-12T14:15:10Z","withdrawn":"2026-01-27T04:12:48.326587Z","related":["MGASA-2014-0290","MGASA-2014-0351","MGASA-2014-0352","MGASA-2014-0355","MGASA-2014-0356","MGASA-2014-0357","MGASA-2014-0358","MGASA-2014-0359","MGASA-2014-0360","MGASA-2014-0361","MGASA-2014-0362","MGASA-2014-0363","MGASA-2014-0378","MGASA-2014-0432","openSUSE-SU-2024:10342-1","openSUSE-SU-2024:10854-1","openSUSE-SU-2024:11089-1"],"references":[{"type":"EVIDENCE","url":"http://blog.securitymouse.com/2014/06/raising-lazarus-20-year-old-bug-that.html"},{"type":"ADVISORY","url":"https://web.archive.org/web/20140701023922/http://www.oberhumer.com/opensource/lzo/"}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}