Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-5978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The zzipmementrynew function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted ZIP...

5.5CVSS5.7AI score0.01616EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2017-0163)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.7AI score0.02078EPSS
Exploits8References4
OpenVAS
OpenVAS
added 2021/02/05 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for zziplib (EulerOS-SA-2021-1240)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.7AI score0.02078EPSS
Exploits8References2
ArchLinux
ArchLinux
added 2018/01/18 12:0 a.m.35 views

[ASA-201801-17] zziplib: denial of service

Arch Linux Security Advisory ASA-201801-17 ========================================== Severity: Medium Date : 2018-01-18 CVE-ID : CVE-2017-5977 CVE-2017-5978 Package : zziplib Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-273 Summary ======= The package zziplib...

5.5CVSS2.5AI score0.01712EPSS
Exploits2References11
Debian
Debian
added 2017/06/20 8:23 p.m.20 views

[SECURITY] [DLA 994-1] zziplib security update

Package : zziplib Version : 0.13.56-1.1+deb7u1 CVE ID : CVE-2017-5974 CVE-2017-5975 CVE-2017-5976 CVE-2017-5978 CVE-2017-5979 CVE-2017-5980 CVE-2017-5981 CVE-2017-5974 Heap-based buffer overflow in the zzipget32 function in fetch.c in zziplib allows remote attackers to cause a denial of service...

5.5CVSS6.4AI score0.02078EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2017/06/13 12:0 a.m.29 views

Debian DSA-3878-1 : zziplib - security update

Agostino Sarubbo discovered multiple vulnerabilities in zziplib, a library to access Zip archives, which could result in denial of service and potentially the execution of arbitrary code if a malformed archive is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

5.5CVSS6.1AI score0.02078EPSS
Exploits7References9
Tenable Nessus
Tenable Nessus
added 2017/05/09 12:0 a.m.26 views

openSUSE Security Update : zziplib (openSUSE-2017-554)

This update for zziplib fixes the following issues : Secuirty issues fixed : - CVE-2017-5974: heap-based buffer overflow in zzipget32 fetch.c bsc1024517 - CVE-2017-5975: heap-based buffer overflow in zzipget64 fetch.c bsc1024528 - CVE-2017-5976: heap-based buffer overflow in zzipmementryextrabloc...

5.5CVSS5.8AI score0.02078EPSS
Exploits8References18
CVE
CVE
added 2017/03/01 3:0 p.m.119 views

CVE-2017-5978

CVE-2017-5978 affects zziplib 0.13.62; the zzip_mem_entry_new function in memdisk.c allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file. Upstream fixes exist in 0.13.67 and several distros patched to mitigate, e.g., Debian, Arch, Mageia.

5.5CVSS5.2AI score0.01616EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder