VYPR

rpm package

suse/zziplib&distro=SUSE Linux Enterprise Module for Basesystem 15 SP5

pkg:rpm/suse/zziplib&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5

Vulnerabilities (3)

  • CVE-2024-39134Jun 27, 2024
    affected < 0.13.69-150000.3.20.1fixed 0.13.69-150000.3.20.1

    A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the __zzip_fetch_disk_trailer() function at /zzip/zip.c.

  • CVE-2020-18770Aug 22, 2023
    affected < 0.13.69-150000.3.17.1fixed 0.13.69-150000.3.17.1

    An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

  • CVE-2020-18442Jun 18, 2021
    affected < 0.13.69-150000.3.17.1fixed 0.13.69-150000.3.17.1

    Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".