AZL-79260 CVE-2026-3381 affecting package teckit 2.5.9-4

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

AZL-78027 CVE-2026-27171 affecting package teckit 2.5.12-4

zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because x2nmodp can do right shifts within a loop that has no termination condition...

CVE-2022-37434 affecting package teckit for versions less than 2.5.12-4

CVE-2022-37434 affecting package teckit for versions less than 2.5.12-4. An upgraded version of the package is available that resolves this issue...

CVE-2023-6992 affecting package teckit for versions less than 2.5.12-4

CVE-2023-6992 affecting package teckit for versions less than 2.5.12-4. An upgraded version of the package is available that resolves this issue...

AZL-45177 CVE-2018-25032 affecting package teckit for versions less than 2.5.12-4

zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches...

AZL-43966 CVE-2015-2158 affecting package teckit 2.5.9-4

Off-by-one error in the pngcrushmeasureidat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file...

AZL-44913 CVE-2015-2158 affecting package teckit for versions less than 2.5.12-4

Off-by-one error in the pngcrushmeasureidat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PNG file...