rpm package
suse/zziplib&distro=SUSE Linux Enterprise Software Development Kit 12 SP5
pkg:rpm/suse/zziplib&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-39134 | — | < 0.13.67-10.39.1 | 0.13.67-10.39.1 | Jun 27, 2024 | A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the __zzip_fetch_disk_trailer() function at /zzip/zip.c. | ||
| CVE-2020-18770 | — | < 0.13.67-10.36.1 | 0.13.67-10.36.1 | Aug 22, 2023 | An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service. | ||
| CVE-2020-18442 | — | < 0.13.67-10.33.1 | 0.13.67-10.33.1 | Jun 18, 2021 | Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file". | ||
| CVE-2018-16548 | Med | 6.5 | < 0.13.67-10.25.1 | 0.13.67-10.25.1 | Sep 5, 2018 | An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack. | |
| CVE-2018-7727 | Med | 6.5 | < 0.13.67-10.25.1 | 0.13.67-10.25.1 | Mar 6, 2018 | An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack. |
- CVE-2024-39134Jun 27, 2024affected < 0.13.67-10.39.1fixed 0.13.67-10.39.1
A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the __zzip_fetch_disk_trailer() function at /zzip/zip.c.
- CVE-2020-18770Aug 22, 2023affected < 0.13.67-10.36.1fixed 0.13.67-10.36.1
An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.
- CVE-2020-18442Jun 18, 2021affected < 0.13.67-10.33.1fixed 0.13.67-10.33.1
Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".
- affected < 0.13.67-10.25.1fixed 0.13.67-10.25.1
An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
- affected < 0.13.67-10.25.1fixed 0.13.67-10.25.1
An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.