Updated zlib packages fix security vulnerability

🗓️ 31 Mar 2026 23:05:51Reported by Gentoo FoundationType

Updated zlib to fix security flaw before 1.3.2 causing CPU usage via crc32_combine64 and crc32_combine_gen64.

Reporter	Title	Published	Views	Family All 98
IBM Security Bulletins	Security Bulletin: IBM i is Affected by an Improper Validation Vulnerability in zlib [CVE-2026-27171]	22 May 202602:07	–	ibm
IBM Security Bulletins	Security Bulletin: Due to the use of zlib, IBM EntireX is vulnerable to Improper Validation of Specified Quantity in Input vulnerabilities (CVE-2026-3381, CVE-2026-27171).	19 Jun 202607:52	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in zlib affects IBM License Metric Tool v9 scanner (CIT)	26 Mar 202611:43	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities Addressed in IBM Tivoli Network Manager IP Edition (ITNM) version 4.2 Fix Pack 24 (4.2.0.24)	9 Apr 202610:21	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Quantum Safe Remediator is affected by multiple vulnerabilities	5 May 202615:14	–	ibm
ATTACKERKB	CVE-2026-27171	18 Feb 202602:36	–	attackerkb
ATTACKERKB	CVE-2026-3381	5 Mar 202601:28	–	attackerkb
ATTACKERKB	CVE-2026-4176	29 Mar 202620:50	–	attackerkb
Tenable Nessus	Amazon Linux 2023 : nodejs20, nodejs20-devel, nodejs20-full-i18n (ALAS2023-2026-1608)	30 Apr 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : nodejs24, nodejs24-devel, nodejs24-full-i18n (ALAS2023-2026-1609)	30 Apr 202600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	9	any	zlib	1.2.13-1.4	zlib-1.2.13-1.4.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
ubuntu	www.ubuntu.com/security/CVE-2026-27171
security-tracker	www.security-tracker.debian.org/tracker/CVE-2026-27171

31 Mar 2026 23:05Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.12.9 - 5.5

EPSS0.00204

SSVC