EUVD-2023-52187

Malicious code in bioql PyPI...

The vulnerability of the mz_path_resolve() function in the minizip-ng library allows a hacker to execute arbitrary code.

The vulnerability of the mzpathresolve function in the minizip-ng library related to buffer overflow. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

Heap Buffer Overflow

ibminizip-ng.so is vulnerable to Heap Buffer Overflow. The vulnerability is due to the mzpathresolve function in mzos.c because there is no boundary checking during the backward search for slashes in the path resolution function. This allows an attacker to craft a file with a specially structured...

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

AZL-43840 CVE-2023-48106 affecting package minizip 2.10.1-2

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

Buffer overflow

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

minizip-ng Security Vulnerabilities

minizip-ng is a zip manipulation library for zlib-ng written in C and supported on Windows, macOS, and Linux. A security vulnerability in zlib-ng minizip-ng version 4.0.2 exists that could allow an attacker to execute arbitrary code via the mzpathresolve function in the mzos.c file...