Unrated severityNVD Advisory· Published Jun 18, 2021· Updated Aug 4, 2024
CVE-2020-18442
CVE-2020-18442
Description
Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- zziplib/zziplibdescription
- osv-coords8 versionspkg:rpm/almalinux/zziplibpkg:rpm/almalinux/zziplib-develpkg:rpm/almalinux/zziplib-utilspkg:rpm/opensuse/zziplib&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/zziplib&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/zziplib&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-TERADATApkg:rpm/suse/zziplib&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/zziplib&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 0.13.68-9.el8+ 7 more
- (no CPE)range: < 0.13.68-9.el8
- (no CPE)range: < 0.13.68-9.el8
- (no CPE)range: < 0.13.68-9.el8
- (no CPE)range: < 0.13.69-150000.3.17.1
- (no CPE)range: < 0.13.69-150000.3.17.1
- (no CPE)range: < 0.13.69-150000.3.17.1
- (no CPE)range: < 0.13.67-10.33.1
- (no CPE)range: < 0.13.67-10.33.1
Patches
Vulnerability mechanics
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TCFYD46OY4VAGJ4UX7IFOH5SHD4UW4ZA/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VVANTEBDQGOIPC5KCEVAGA5KT4KKTGWB/mitrevendor-advisoryx_refsource_FEDORA
- github.com/gdraheim/zziplib/issues/68mitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2021/12/msg00021.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.