47 matches found
Low: unzip
Issue Overview: Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue. CVE-2019-13232 Affected Packages: unzip Issue Correction: Run dnf update unzip --releasever 2023.10.20260202 or dnf upda...
Amazon Linux 2023 : unzip (ALAS2023-2026-1422)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1422 advisory. Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a better zip bomb issue. CVE-2019-13232 Tenable has extracted the...
MiracleLinux 7 : unzip-6.0-21.el7 (AXSA:2020-4547:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4547:01 advisory. unzip: overlapping of files in ZIP container leads to denial of service CVE-2019-13232 Tenable has extracted the preceding description block directly from th...
MiracleLinux 8 : unzip-6.0-43.el8 (AXSA:2020-297:02)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-297:02 advisory. unzip: overlapping of files in ZIP container leads to denial of service CVE-2019-13232 Tenable has extracted the preceding description block directly from the...
CVE-2019-13232
creationtimestamp| type| source ---|---|--- 2025-07-08 07:10:42+00:00| seen| https://infosec.exchange/users/certvde/statuses/114816361290443115...
TencentOS Server 3: unzip (TSSA-2022:0051)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0051 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Alibaba Cloud Linux 3 : 0051: unzip (ALINUX3-SA-2022:0051)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0051 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-13232: Info-ZIP UnZip 6.0 mishandles the...
CBL Mariner 2.0 Security Update: unzip (CVE-2019-13232)
The version of unzip installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-13232 advisory. - Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service...
RHEL 5 : unzip (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution CVE-2018-1000035...
CVE-2019-13232 affecting package unzip for versions less than 6.0-20
CVE-2019-13232 affecting package unzip for versions less than 6.0-20. A patched version of the package is available...
Oracle Linux 8 : unzip (ELSA-2020-1787)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1787 advisory. - Related: CVE-2019-13232 - Fix CVE-2019-13232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
Oracle Linux 7 : unzip (ELSA-2020-1181)
The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1181 advisory. - Fix CVE-2019-13232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...
BELL-CVE-2019-13232 CVE-2019-13232 does not affect BellSoft software
Bulletin has no description...
K80311892: InfoZIP vulnerability CVE-2019-13232
Security Advisory Description Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue. CVE-2019-13232 Impact Local users with administrative access to the BIG-IP Advanced Shell bash may be able...
CVE-2019-13232 affecting package unzip for versions less than 6.0-19
CVE-2019-13232 affecting package unzip for versions less than 6.0-19. A patched version of the package is available...
AlmaLinux 8 : unzip (ALSA-2020:1787)
The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2020:1787 advisory. - Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a better zip bomb issue...
F5 Networks BIG-IP : InfoZIP vulnerability (K80311892)
The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.4.1 / 14.1.4.3 / 15.1.4 / 16.0.1.2 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K80311892 advisory. Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leadin...
Security Bulletin: IBM DataPower Gateway may allow a potential DoS when importing malicious ZIP files (CVE-2019-13232)
Summary IBM has addressed CVE-2019-13232 Vulnerability Details CVEID: CVE-2019-13232 DESCRIPTION: Info-ZIP UnZip is vulnerable to a denial of service, caused by mishandling the overlapping of files inside a ZIP container. By persuading a victim to open a specially crafted file, a remote attacker...
CentOS 8 : unzip (CESA-2020:1787)
The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2020:1787 advisory. - unzip: overlapping of files in ZIP container leads to denial of service CVE-2019-13232 Note that Nessus has not tested for this issue but has instead relied...
Ubuntu: Security Advisory (USN-4672-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...