rpm package
suse/zlib&distro=SUSE Linux Enterprise Software Development Kit 12 SP5
pkg:rpm/suse/zlib&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-45853 | — | < 1.2.11-11.37.1 | 1.2.11-11.37.1 | Oct 14, 2023 | MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable becaus | ||
| CVE-2022-37434 | — | < 1.2.11-11.22.1 | 1.2.11-11.22.1 | Aug 5, 2022 | zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable t | ||
| CVE-2018-25032 | — | < 1.2.11-11.19.1 | 1.2.11-11.19.1 | Mar 25, 2022 | zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. |
- CVE-2023-45853Oct 14, 2023affected < 1.2.11-11.37.1fixed 1.2.11-11.37.1
MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable becaus
- CVE-2022-37434Aug 5, 2022affected < 1.2.11-11.22.1fixed 1.2.11-11.22.1
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable t
- CVE-2018-25032Mar 25, 2022affected < 1.2.11-11.19.1fixed 1.2.11-11.19.1
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.