Linux Distros Unpatched Vulnerability : CVE-2018-7727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzipmemdisknew in memdisk.c, which will lead to a denial of service...

zziplib security update

0.13.68-13 - Fix CVE-2020-18770 Previous patch contained segfault bug Resolves: RHEL-14966 0.13.68-12 - Add the gating tests from the 8.8.0 branch Resolves: RHEL-24429 0.13.68-11 - Use /usr/libexec/platform-python macro during the config phase used for doc generation Resolves: RHEL-22880 0.13.68-...

SUSE CVE-2018-6869

In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a crash in the zzipparserootdirectory function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

ZZIPlib Memory Disclosure Vulnerability

ZZIPlib is a set of lightweight file compression tools. A memory leak vulnerability exists in the 'zzipmemdisknew' function of the memdisk.c file in ZZIPlib version 0.13.68. An attacker can exploit this vulnerability to cause a denial of service...

CVE-2018-7726

An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the zzipparserootdirectory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

CVE-2018-7725

An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzipdiskfread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service...

CVE-2018-7727

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzipmemdisknew in memdisk.c, which will lead to a denial of service attack...

CVE-2018-7727

ZZIPlib 0.13.68 contains a memory leak in zzip_mem_disk_new (memdisk.c) that can cause a denial of service. The issue affects zziplib up to version 0.13.68; advisories indicate upgrading to 0.13.69 or later fixes. Multiple CVEs (CVE-2018-7727, CVE-2018-7725, CVE-2018-7726) describe related DoS ve...

CVE-2018-7726

CVE-2018-7726 affects ZZIPlib up to version 0.13.68. The issue is a bus error in __zzip_parse_root_directory (zip.c) that could crash a target via a crafted ZIP file, enabling a denial of service. Connected advisories confirm upstream fixed in 0.13.69; multiple OS advisories/patches reference thi...

CVE-2018-7726

An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the zzipparserootdirectory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

ZZIPlib '__zzip_parse_root_directory' function denial of service vulnerability

ZZIPlib is a set of lightweight file compression tools. A security vulnerability exists in the 'zzipparserootdirectory' function of the zzip/zip.c file in ZZIPlib version 0.13.68. A remote attacker can exploit this vulnerability to cause a denial of service uncontrolled memory allocation and cras...