Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-14107

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The zipreadeocd64 function in zipopen.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service memory...

6.5CVSS5.7AI score0.032EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 7 : libzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libzip: Memory allocation failure in zipcdirgrow function CVE-2017-14107 Note that Nessus has not tested for this...

6.5CVSS6.6AI score0.032EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 6 : libzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libzip: Memory allocation failure in zipcdirgrow function CVE-2017-14107 Note that Nessus has not tested for this...

6.5CVSS6.9AI score0.032EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.8 views

Ubuntu: Security Advisory (USN-4811-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.032EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2018-0020)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.032EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.15 views

Fedora 27 : mingw-libzip (2017-d5487d0f80)

Update to version 1.3.0, see https://nih.at/libzip/NEWS.html for details. ---- This update backports security fix for CVE-2017-14107. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

6.5CVSS5.7AI score0.032EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.32 views

Fedora 27 : libzip (2017-7bd193c0ed)

Version 1.3.0 It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are : - Support bzip2 compressed zip archives - Improve file progress callback code - Fix zipfdopen - CVE-2017-12858: Fix doubl...

9.8CVSS6.2AI score0.03703EPSS
Exploits0References3
Mageia
Mageia
added 2018/01/02 3:2 p.m.40 views

Updated libzip packages fix security vulnerability

The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive CVE-2017-14107...

6.5CVSS5.3AI score0.032EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/09/22 12:0 a.m.22 views

SUSE SLED12 / SLES12 Security Update : libzip (SUSE-SU-2017:2546-1)

This update for libzip fixes one issues. This security issue was fixed : - CVE-2017-14107: The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive bsc1056996...

6.5CVSS5.7AI score0.032EPSS
Exploits0References4
OSV
OSV
added 2017/09/21 11:35 a.m.4 views

SUSE-SU-2017:2546-1 Security update for libzip

This update for libzip fixes one issues. This security issue was fixed: - CVE-2017-14107: The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive bsc1056996...

6.5CVSS6.2AI score0.032EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/09/20 12:0 a.m.27 views

Fedora 25 : mingw-libzip (2017-bb5d87e9de)

This update fixes CVE-2017-14107. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

6.5CVSS5.7AI score0.032EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/09/20 12:0 a.m.14 views

Fedora Update for mingw-libzip FEDORA-2017-4d4914a260

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.032EPSS
Exploits0References2
Slackware Linux
Slackware Linux
added 2017/09/12 10:23 p.m.42 views

[slackware-security] libzip

New libzip packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libzip-1.0.1-i586-3slack14.2.txz: Rebuilt. Fix a denial of service security issue. For more information, see:...

6.5CVSS6.8AI score0.032EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/07 12:0 a.m.24 views

Fedora 26 : libzip (2017-840db88351)

Version 1.3.0 It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are : - Support bzip2 compressed zip archives - Improve file progress callback code - Fix zipfdopen - CVE-2017-12858: Fix doubl...

9.8CVSS6.2AI score0.03703EPSS
Exploits0References3
OSV
OSV
added 2017/09/01 5:29 p.m.24 views

CVE-2017-14107

The zipreadeocd64 function in zipopen.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive...

6.5CVSS6.6AI score
Exploits0References3
Rows per page
Query Builder