10 matches found
USN-6298-1: ZZIPlib vulnerabilities
Liu Zhu discovered that ZZIPlib incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2018-7727 YiMing Liu discovered that ZZIPlib incorrectly...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : ZZIPlib vulnerabilities (USN-6298-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6298-1 advisory. Liu Zhu discovered that ZZIPlib incorrectly handled certain inputs. If a user or an automated system were tricked into opening a...
Huawei EulerOS: Security Advisory for zziplib (EulerOS-SA-2018-1397)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 Security Update : zziplib (SUSE-SU-2019:3341-1)
This update for zziplib fixes the following issues : Security issues fixed : CVE-2018-16548: Avoid a memory leak from zzipparserootdirectory which could lead to denial of service. bsc1107424 CVE-2018-7727: Fixed a memory leak in unzzipcat bsc1084515. Non-security issue fixed: Prevented division b...
EulerOS 2.0 SP3 : zziplib (EulerOS-SA-2018-1397)
According to the versions of the zziplib package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - zziplib: out of bound read in mmapped.c:zzipdiskfread causes crash.CVE-2018-7725 - zziplib: Bus error in zip.c:zzipparserootdirectory cause cras...
Scientific Linux Security Update : zziplib on SL7.x x86_64 (20181030)
Security Fixes : - zziplib: out of bound read in mmapped.c:zzipdiskfread causes crash CVE-2018-7725 - zziplib: Bus error in zip.c:zzipparserootdirectory cause crash via crafted zip file CVE-2018-7726 - zziplib: Memory leak in memdisk.c:zzipmemdisknew can lead to denial of service via crafted zip...
Oracle Linux 7 : zziplib (ELSA-2018-3229)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3229 advisory. - 'Variable 'file' going out of scope leaks the storage it points to.' has been introduced by the original version of 0001-fix-CVE-2018-7725.patch - Fi...
zziplib security update
0.13.62-9 - Fix covscan warning - 'Variable 'file' going out of scope leaks the storage it points to.' has been introduced by the original version of 0001-fix-CVE-2018-7725.patch - Related: 1558596 0.13.62-8 - Fix CVE-2018-7727 - Resolves: 1558891 0.13.62-7 - Fix CVE-2018-7726 - Resolves: 1558623...
Fedora Update for zziplib FEDORA-2018-45183aab17
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-7727
ZZIPlib 0.13.68 contains a memory leak in zzip_mem_disk_new (memdisk.c) that can cause a denial of service. The issue affects zziplib up to version 0.13.68; advisories indicate upgrading to 0.13.69 or later fixes. Multiple CVEs (CVE-2018-7727, CVE-2018-7725, CVE-2018-7726) describe related DoS ve...