Critical severity9.8NVD Advisory· Published May 23, 2017· Updated May 13, 2026
CVE-2016-9841
CVE-2016-9841
Description
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
33- lists.opensuse.org/opensuse-updates/2016-12/msg00127.htmlnvd
- lists.opensuse.org/opensuse-updates/2017-01/msg00050.htmlnvd
- lists.opensuse.org/opensuse-updates/2017-01/msg00053.htmlnvd
- www.openwall.com/lists/oss-security/2016/12/05/21nvd
- www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.htmlnvd
- www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlnvd
- www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.htmlnvd
- www.securityfocus.com/bid/95131nvd
- www.securitytracker.com/id/1039427nvd
- www.securitytracker.com/id/1039596nvd
- access.redhat.com/errata/RHSA-2017:1220nvd
- access.redhat.com/errata/RHSA-2017:1221nvd
- access.redhat.com/errata/RHSA-2017:1222nvd
- access.redhat.com/errata/RHSA-2017:2999nvd
- access.redhat.com/errata/RHSA-2017:3046nvd
- access.redhat.com/errata/RHSA-2017:3047nvd
- access.redhat.com/errata/RHSA-2017:3453nvd
- bugzilla.redhat.com/show_bug.cginvd
- github.com/madler/zlib/commit/9aaec95e82117c1cb0f9624264c3618fc380cecbnvd
- lists.debian.org/debian-lts-announce/2019/03/msg00027.htmlnvd
- lists.debian.org/debian-lts-announce/2020/01/msg00030.htmlnvd
- security.gentoo.org/glsa/201701-56nvd
- security.gentoo.org/glsa/202007-54nvd
- security.netapp.com/advisory/ntap-20171019-0001/nvd
- support.apple.com/HT208112nvd
- support.apple.com/HT208113nvd
- support.apple.com/HT208115nvd
- support.apple.com/HT208144nvd
- usn.ubuntu.com/4246-1/nvd
- usn.ubuntu.com/4292-1/nvd
- wiki.mozilla.org/MOSS/Secure_Open_Source/Completednvd
- wiki.mozilla.org/images/0/09/Zlib-report.pdfnvd
- www.oracle.com/security-alerts/cpujul2020.htmlnvd
News mentions
0No linked articles in our index yet.