Critical severity9.8NVD Advisory· Published Mar 15, 2002· Updated Apr 16, 2026
CVE-2002-0059
CVE-2002-0059
Description
The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote attackers to execute arbitrary code via a block of malformed compression data.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
16- www.linux-mandrake.com/en/security/2002/MDKSA-2002-023.phpnvdBroken LinkPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2002-026.htmlnvdBroken LinkPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2002-027.htmlnvdBroken LinkPatchVendor Advisory
- www.cert.org/advisories/CA-2002-07.htmlnvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/368819nvdThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/4267nvdBroken LinkThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/8427nvdThird Party AdvisoryVDB Entry
- ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-015.1.txtnvdBroken Link
- distro.conectiva.com.br/atualizacoes/nvdBroken Link
- frontal2.mandriva.com/security/advisoriesnvdBroken Link
- www.caldera.com/support/security/advisories/CSSA-2002-014.1.txtnvdBroken Link
- www.debian.org/security/2002/dsa-122nvdBroken Link
- www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3nvdBroken Link
- www1.itrc.hp.com/service/cki/docDisplay.donvdBroken Link
- www1.itrc.hp.com/service/cki/docDisplay.donvdBroken Link
- www1.itrc.hp.com/service/cki/docDisplay.donvdBroken Link
News mentions
0No linked articles in our index yet.