AZL-79260 CVE-2026-3381 affecting package teckit 2.5.9-4

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

AZL-79286 CVE-2026-3381 affecting package teckit 2.5.12-4

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

AZL-78027 CVE-2026-27171 affecting package teckit 2.5.12-4

zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because x2nmodp can do right shifts within a loop that has no termination condition...

Azure Linux 3.0 Security Update: fltk / teckit (CVE-2023-6992)

The version of fltk / teckit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6992 advisory. - Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting th...

Azure Linux 3.0 Security Update: fltk / teckit (CVE-2015-2158)

The version of fltk / teckit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2015-2158 advisory. - Off-by-one error in the pngcrushmeasureidat function in pngcrush.c in pngcrush before 1.7.84 allows...

CVE-2015-2158 affecting package teckit for versions less than 2.5.12-4

CVE-2015-2158 affecting package teckit for versions less than 2.5.12-4. An upgraded version of the package is available that resolves this issue...

CVE-2023-6992 affecting package teckit for versions less than 2.5.12-4

CVE-2023-6992 affecting package teckit for versions less than 2.5.12-4. An upgraded version of the package is available that resolves this issue...

CVE-2022-37434 affecting package teckit for versions less than 2.5.12-4

CVE-2022-37434 affecting package teckit for versions less than 2.5.12-4. An upgraded version of the package is available that resolves this issue...

CVE-2018-25032 affecting package teckit for versions less than 2.5.12-4

CVE-2018-25032 affecting package teckit for versions less than 2.5.12-4. An upgraded version of the package is available that resolves this issue...

AZL-43807 CVE-2023-6992 affecting package teckit 2.5.9-4

Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation deflate.c. The issues resulted from improper input validation and heap-based buffer overflow. A local attacker could exploit the problem during compression...

AZL-45198 CVE-2023-6992 affecting package teckit for versions less than 2.5.12-4

Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation deflate.c. The issues resulted from improper input validation and heap-based buffer overflow. A local attacker could exploit the problem during compression...

AZL-44769 CVE-2022-37434 affecting package teckit for versions less than 2.5.12-4

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call...

new packages: teckit

An update is available for teckit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

AZL-45177 CVE-2018-25032 affecting package teckit for versions less than 2.5.12-4

zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches...

AZL-44913 CVE-2015-2158 affecting package teckit for versions less than 2.5.12-4

Off-by-one error in the pngcrushmeasureidat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file...

AZL-43966 CVE-2015-2158 affecting package teckit 2.5.9-4

Off-by-one error in the pngcrushmeasureidat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file...