Lucene search
K

17 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in zziplib

The infinite loop in zziplib v0.13.69 allows remote attackers to cause a denial of service by using the return value “zzipfileread” in the function “unzzipcatfile”...

3.3CVSS5.7AI score0.00745EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2020-18770

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in function zzipdiskentrytofileheader in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service. CVE-2020-18770 Note that...

5.5CVSS6.2AI score0.00317EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2025/05/15 7:0 a.m.2 views

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

...

5.5CVSS5.7AI score0.00317EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/08/22 12:0 a.m.10 views

CVE-2020-18770

An issue was discovered in function zzipdiskentrytofileheader in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service...

6.6AI score0.00317EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.2 views

PT-2023-11506 · Zziplib +6 · Zziplib +6

Name of the Vulnerable Software and Affected Versions: zziplib version 0.13.69 Description: An issue was discovered in the function zzip disk entry to file header in mmapped.c, which will lead to a denial-of-service. Recommendations: For zziplib version 0.13.69, consider applying a patch or fix t...

5.5CVSS5.1AI score0.00745EPSS
Exploits2References44
Debian CVE
Debian CVE
added 2023/08/22 12:0 a.m.17 views

CVE-2020-18770

An issue was discovered in function zzipdiskentrytofileheader in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service...

5.5CVSS6.8AI score0.00317EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 4:24 a.m.2 views

SUSE CVE-2018-16548

An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function zzipparserootdirectory in zip.c, which will lead to a denial of service attack...

3.3CVSS6.8AI score0.01954EPSS
Exploits1References7
Microsoft CVE
Microsoft CVE
added 2021/12/16 8:0 a.m.2 views

Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file because of the function unzzip_cat in the bins/unzzipcat-mem.c file.

...

5.8CVSS7AI score0.01538EPSS
Exploits1
OSV
OSV
added 2021/07/03 11:3 a.m.2 views

OESA-2021-1247 zziplib security update

The zziplib is a lightweight library to easily extract data from zip files. Applications can bundle files into a single zip archive and access them. The implementation is based only on the free subset of compression with the zlib algorithm which is actually used by the zip/unzip tools. Security...

3.3CVSS6.8AI score0.00745EPSS
Exploits1References2
Snyk
Snyk
added 2021/06/18 3:15 p.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzipfileread" in the function "unzzipcatfile". Details Denial of Service DoS describes a family of...

4CVSS7.2AI score0.00745EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/06/18 12:0 a.m.3 views

zziplib 安全漏洞

ZZIPlib is a compressed document extraction library. A security vulnerability exists in zziplib, which is caused by an infinite loop in zziplib v0.13.69. The vulnerability can be exploited to cause a denial of service via the return value "zzip file read" in the function "unzzip cat file"...

3.3CVSS5.8AI score0.00745EPSS
Exploits1References9
OSV
OSV
added 2018/10/01 8:29 a.m.7 views

AZL-7014 CVE-2018-17828 affecting package zziplib for versions less than 0.13.69-8

Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...

5.5CVSS6.4AI score0.01538EPSS
Exploits1References1
OSV
OSV
added 2018/10/01 8:29 a.m.4 views

AZL-7458 CVE-2018-17828 affecting package zziplib for versions less than 0.13.69-8

Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...

5.5CVSS6.4AI score0.01538EPSS
Exploits1References1
Snyk
Snyk
added 2018/10/01 8:29 a.m.1 views

Directory Traversal

Amendment This was deemed not a vulnerability. Overview Affected versions of this package are vulnerable to Directory Traversal. Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in...

5.8CVSS6.3AI score0.01538EPSS
Exploits1References2
Cvelist
Cvelist
added 2018/10/01 8:0 a.m.19 views

CVE-2018-17828

Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...

5.4AI score0.01538EPSS
Exploits1References1
OSV
OSV
added 2018/09/05 9:29 p.m.4 views

AZL-7457 CVE-2018-16548 affecting package zziplib for versions less than 0.13.69-8

An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function zzipparserootdirectory in zip.c, which will lead to a denial of service attack...

6.5CVSS6.3AI score0.01954EPSS
Exploits1References1
Snyk
Snyk
added 2018/09/05 9:29 p.m.2 views

Memory Leak

Amendment This was deemed not a vulnerability. Overview Affected versions of this package are vulnerable to Memory Leak. An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function zzipparserootdirectory in zip.c, which will lead to a denial of service...

6.5CVSS6.4AI score0.01954EPSS
Exploits1References2
Rows per page
Query Builder