Unrated severityNVD Advisory· Published Jan 4, 2024· Updated Sep 6, 2024
Memory corruption issues is Cloudflare zlib implementation
CVE-2023-6992
Description
Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation (deflate.c). The issues resulted from improper input validation and heap-based buffer overflow. A local attacker could exploit the problem during compression using a crafted malicious file potentially leading to denial of service of the software. Patches: The issue has been patched in commit 8352d10 https://github.com/cloudflare/zlib/commit/8352d108c05db1bdc5ac3bdf834dad641694c13c . The upstream repository is not affected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Cloudflare/zlibv5Range: 0
Patches
Vulnerability mechanics
References
1- github.com/cloudflare/zlib/security/advisories/GHSA-vww9-j87r-4cqhmitrevendor-advisory
News mentions
0No linked articles in our index yet.