rpm package
almalinux/zlib
pkg:rpm/almalinux/zlib
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-37434 | — | < 1.2.11-19.el8_6 | 1.2.11-19.el8_6 | Aug 5, 2022 | zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable t | ||
| CVE-2018-25032 | — | < 1.2.11-18.el8_5 | 1.2.11-18.el8_5 | Mar 25, 2022 | zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. |
- CVE-2022-37434Aug 5, 2022affected < 1.2.11-19.el8_6fixed 1.2.11-19.el8_6
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable t
- CVE-2018-25032Mar 25, 2022affected < 1.2.11-18.el8_5fixed 1.2.11-18.el8_5
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.