Lucene search
GoogleOSV:CVE-2017-14107HistorySep 01, 2017 - 5:29 p.m.
CVE-2017-14107
2017-09-0117:29:00
Google
osv.dev
4
The _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service (memory allocation failure in _zip_cdir_grow in zip_dirent.c) via a crafted ZIP archive.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libzip | eq | rel-1-1-2 | |
| libzip | eq | rel-1-1-3 | |
| libzip | eq | rel-0-10-1 | |
| libzip | eq | rel-1-0-beta1 | |
| libzip | eq | rel-0-11-1 | |
| libzip | eq | rel-0-9-2 | |
| libzip | eq | rel-1-2-0 | |
| libzip | eq | rel-0-11-2 | |
| libzip | eq | rel-1-1 | |
| libzip | eq | rel-0-9-1 |
Related
nessus
nessus
Fedora 25 : mingw-libzip (2017-bb5d87e9de)
2017-09-20 00:00:00
Fedora 26 : mingw-libzip (2017-4d4914a260)
2017-09-20 00:00:00
openSUSE Security Update : libzip (openSUSE-2017-1084)
2017-09-22 00:00:00
cvelist
cvelist
CVE-2017-14107
2017-09-01 17:00:00
openvas
openvas
Fedora Update for mingw-libzip FEDORA-2017-bb5d87e9de
2017-09-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:2546-1)
2021-04-19 00:00:00
Slackware: Security Advisory (SSA:2017-255-02)
2022-04-21 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: mingw-libzip-1.1.3-3.fc25
2017-09-19 15:25:31
[SECURITY] Fedora 27 Update: mingw-libzip-1.3.0-1.fc27
2017-09-30 07:29:43
[SECURITY] Fedora 26 Update: mingw-libzip-1.3.0-1.fc26
2017-09-19 23:24:29
osv
osv
libzip vulnerability
2021-03-15 21:44:15
libzip - security update
2021-12-28 00:00:00
nvd
nvd
CVE-2017-14107
2017-09-01 17:29:00
cve
cve
CVE-2017-14107
2017-09-01 17:29:00
slackware
slackware
[slackware-security] libzip
2017-09-12 22:23:44
alpinelinux
alpinelinux
CVE-2017-14107
2017-09-01 17:29:00
debian
debian
[SECURITY] [DLA 2858-1] libzip security update
2021-12-27 23:46:16
redhatcve
redhatcve
CVE-2017-14107
2017-09-06 15:18:29
ubuntucve
ubuntucve
CVE-2017-14107
2017-09-01 00:00:00
prion
prion
Design/Logic Flaw
2017-09-01 17:29:00
freebsd
freebsd
libzip -- denial of service
2017-09-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-05-10 23:28:10
ubuntu
ubuntu
libzip vulnerability
2021-03-15 00:00:00
debiancve
debiancve
CVE-2017-14107
2017-09-01 17:29:00
mageia
mageia
Updated libzip packages fix security vulnerability
2018-01-02 18:02:16
rosalinux
rosalinux
Advisory ROSA-SA-2021-1907
2021-07-02 17:26:08