Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-18770HistoryAug 22, 2023 - 7:15 p.m.
CVE-2020-18770
2023-08-2219:15:55
Debian Security Bug Tracker
security-tracker.debian.org
5
zziplib 0.13.69
denial-of-service
mmapped file vulnerability
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
12.8%
An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | zziplib | <= 0.13.72+dfsg.1-1.1 | zziplib_0.13.72+dfsg.1-1.1_all.deb |
| Debian | 11 | all | zziplib | <= 0.13.62-3.3+deb11u1 | zziplib_0.13.62-3.3+deb11u1_all.deb |
| Debian | 10 | all | zziplib | <= 0.13.62-3.2+deb10u1 | zziplib_0.13.62-3.2+deb10u1_all.deb |
| Debian | 999 | all | zziplib | <= 0.13.72+dfsg.1-1.2 | zziplib_0.13.72+dfsg.1-1.2_all.deb |
| Debian | 13 | all | zziplib | <= 0.13.72+dfsg.1-1.2 | zziplib_0.13.72+dfsg.1-1.2_all.deb |
Related
oraclelinux
oraclelinux
zziplib security update
2024-05-02 00:00:00
zziplib security update
2024-05-23 00:00:00
nessus
nessus
RHEL 8 : zziplib (RHSA-2024:3127)
2024-05-23 00:00:00
Oracle Linux 8 : zziplib (ELSA-2024-3127)
2024-05-28 00:00:00
Oracle Linux 9 : zziplib (ELSA-2024-2377)
2024-05-06 00:00:00
nvd
nvd
CVE-2020-18770
2023-08-22 19:15:55
redhat
redhat
(RHSA-2024:2377) Moderate: zziplib security update
2024-04-30 06:15:32
(RHSA-2024:3127) Moderate: zziplib security update
2024-05-22 06:35:41
almalinux
almalinux
Moderate: zziplib security update
2024-05-22 00:00:00
Moderate: zziplib security update
2024-04-30 00:00:00
prion
prion
Denial of service
2023-08-22 19:15:00
osv
osv
CVE-2020-18770
2023-08-22 19:15:55
Moderate: zziplib security update
2024-04-30 00:00:00
Moderate: zziplib security update
2024-05-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-10-10 08:59:55
mageia
mageia
Updated zziplib packages fix security vulnerability
2024-05-09 05:40:29
cvelist
cvelist
CVE-2020-18770
2023-08-22 00:00:00
cve
cve
CVE-2020-18770
2023-08-22 19:15:55
ubuntucve
ubuntucve
CVE-2020-18770
2023-08-22 00:00:00
redhatcve
redhatcve
CVE-2020-18770
2023-10-30 05:56:53
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0167)
2024-05-09 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
12.8%
Related for DEBIANCVE:CVE-2020-18770