4 matches found
CVE-2022-4904 affecting package rubygem-mini_portile2 2.8.0-1
CVE-2022-4904 affecting package rubygem-miniportile2 2.8.0-1. This CVE either no longer is or was never applicable...
CVE-2023-45853 affecting package rubygem-mini_portile2 for versions less than 2.8.0-1
CVE-2023-45853 affecting package rubygem-miniportile2 for versions less than 2.8.0-1. A patched version of the package is available...
AZL-33350 CVE-2023-45853 affecting package rubygem-mini_portile2 for versions less than 2.8.0-1
MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...
AZL-35229 CVE-2023-45853 affecting package rubygem-mini_portile2 for versions less than 2.8.0-1
MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...