Popular Compression Tool 7-Zip Allegedly Faces Zero-Day Vulnerability
Popular Compression Tool 7-Zip Allegedly Faces Zero-Day Vulnerability, Developer Denies Claims as AI-Generated Hoax
- Why Enterprise RAID Rebuilding Succeeds Where Consumer Arrays Fail?
- Linus Torvalds Rejects MMC Subsystem Updates for Linux 7.0: “Complete Garbage”
- The Man Who Maintained Sudo for 30 Years Now Struggles to Fund the Work That Powers Millions of Servers
- How Close Are Quantum Computers to Breaking RSA-2048?
- Why Windows 10 Users Are Flocking to Zorin OS 18 Instead of Linux Mint?
- How to Prevent Ransomware Infection Risks?
- What is the best alternative to Microsoft Office?
Popular Compression Tool 7-Zip Allegedly Faces Zero-Day Vulnerability, Developer Denies Claims as AI-Generated Hoax
On January 1st, a user with the handle @NSA_Employee39 on the X platform posted a purported exploit code targeting the widely used open-source compression tool 7-Zip, claiming it exposed a zero-day vulnerability.
However, this claim was swiftly refuted by 7-Zip’s creator, Igor Pavlov, who dismissed it as fake news. Other users also expressed skepticism about the post, with some suggesting that the exploit code was likely generated by a large language model (LLM).
Despite the dismissal, reports of a potential arbitrary code execution (ACE) vulnerability in 7-Zip gained rapid attention across social media.
Igor Pavlov took to the comments section of Sourceforge.net, where 7-Zip is hosted, to clarify the situation. In his posts, Pavlov stated, “The exploit code circulating on X is most likely generated by a large language model.” He elaborated further, saying, “The code’s comments claim: ‘This exploit targets 7-Zip’s LZMA decoder, leveraging a crafted .7z archive with malformed LZMA streams to trigger a buffer overflow in the RC_NORM function.’”
However, Pavlov emphasized that this claim is fundamentally incorrect, stating, “The RC_NORM function does not exist in the LZMA decoder. The RC_NORM macro definition is used exclusively in the LZMA encoder and PPMD decoder. Therefore, the LZMA decoding code cannot call RC_NORM. The exploit’s claim regarding RC_NORM is completely erroneous.”
Given that 7-Zip is open-source software, and no evidence supports the existence of a legitimate zero-day ACE exploit, users are reassured that there is no cause for concern.
For those still apprehensive, it is advised to exercise caution and run security scans on any 7-Zip-compatible archive files downloaded from untrusted sources. As described, the alleged exploit would require a user to open a maliciously crafted archive for any potential harm to occur.
In conclusion, all credible sources unanimously agree that the reported vulnerability is baseless. Both the exploit code and its associated claims appear to be AI-generated rather than the work of a genuine hacker.
