VYPR
Unrated severityNVD Advisory· Published Jan 4, 2024· Updated Sep 6, 2024

Memory corruption issues is Cloudflare zlib implementation

CVE-2023-6992

Description

Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation (deflate.c). The issues resulted from improper input validation and heap-based buffer overflow. A local attacker could exploit the problem during compression using a crafted malicious file potentially leading to denial of service of the software. Patches: The issue has been patched in commit 8352d10 https://github.com/cloudflare/zlib/commit/8352d108c05db1bdc5ac3bdf834dad641694c13c . The upstream repository is not affected.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zlib/Zlibllm-fuzzy
    Range: patched in commit 8352d10
  • Cloudflare/zlibv5
    Range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.