19 matches found
MiracleLinux 7 : zziplib-0.13.62-12.el7 (AXSA:2020-4544:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4544:01 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...
MiracleLinux 9 : zziplib-0.13.71-12.el9 (AXSA:2025-11423:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-11423:01 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...
RockyLinux 9 : zziplib (RLSA-2025:20838)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:20838 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...
AlmaLinux 10 : zziplib (ALSA-2025:20478)
The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:20478 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...
RockyLinux 10 : zziplib (RLSA-2025:20478)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:20478 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...
zziplib security update
An update is available for zziplib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The zziplib is a lightweight library to easily extract data from zip files...
RLSA-2025:20838 Moderate: zziplib security update
The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
AlmaLinux 9 : zziplib (ALSA-2025:20838)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:20838 advisory. zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 Tenable has extracted the preceding description block directly from the...
zziplib: directory traversal in unzzip_cat in the bins/unzzipcat-mem.c
It was discovered that zziplib is vulnerable to a directory traversal flaw in most of its unzip binaries, including unzip-mem, unzzipcat-mem, unzzipcat-big, unzzipcat-mix, and unzzipcat-zip. An attacker may use this flaw to write files outside the intended target directory, overwriting existing...
Moderate: Red Hat Security Advisory: zziplib security update
An update for zziplib is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Moderate: Red Hat Security Advisory: zziplib security update
An update for zziplib is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
ALSA-2025:20838 Moderate: zziplib security update
The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
RHEL 10 : zziplib (RHSA-2025:20478)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:20478 advisory. The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the...
ALSA-2025:20478 Moderate: zziplib security update
The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
Moderate: zziplib security update
The zziplib is a lightweight library to easily extract data from zip files. Security Fixes: zziplib: directory traversal in unzzipcat in the bins/unzzipcat-mem.c CVE-2018-17828 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
SUSE CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...
zziplib: directory traversal in unzzip_cat in the bins/unzzipcat-mem.c
It was discovered that zziplib is vulnerable to a directory traversal flaw in most of its unzip binaries, including unzip-mem, unzzipcat-mem, unzzipcat-big, unzzipcat-mix, and unzzipcat-zip. An attacker may use this flaw to write files outside the intended target directory, overwriting existing...
Directory Traversal
Amendment This was deemed not a vulnerability. Overview Affected versions of this package are vulnerable to Directory Traversal. Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in...
UBUNTU-CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...