cve 2025 62813

CVE-2025-62813 is a denial-of-service vulnerability in the LZ4 compression library affecting releases through v1.10.0. The flaw stems from improper NULL handling inside the frame API and has been fixed upstream with a small defensive change. LZ4 is widely used across operating systems, applications, and embedded devices for fast lossless compression. Operators and integrators should treat this as a pragmatic stability and supply-chain risk, applying the upstream patch to mitigate potential DoS attacks. The tag covers discussion of the vulnerability's impact, affected versions, and remediation guidance for Windows and other platforms that incorporate LZ4.