11 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-10995
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security vulnerability has been detected in Open Babel up to 3.1.1. This vulnerability affects the function zlibstream::basicunzipstreambuf::underflow in the...
SUSE CVE-2025-10995
A security vulnerability has been detected in Open Babel up to 3.1.1. This vulnerability affects the function zlibstream::basicunzipstreambuf::underflow in the library /src/zipstreamimpl.h. Such manipulation leads to memory corruption. Local access is required to approach this attack. The exploit...
CVE-2025-10995
A security vulnerability has been detected in Open Babel up to 3.1.1. This vulnerability affects the function zlibstream::basicunzipstreambuf::underflow in the library /src/zipstreamimpl.h. Such manipulation leads to memory corruption. Local access is required to approach this attack. The exploit...
DEBIAN-CVE-2025-10995
A security vulnerability has been detected in Open Babel up to 3.1.1. This vulnerability affects the function zlibstream::basicunzipstreambuf::underflow in the library /src/zipstreamimpl.h. Such manipulation leads to memory corruption. Local access is required to approach this attack. The exploit...
CVE-2025-10995
A security vulnerability has been detected in Open Babel up to 3.1.1. This vulnerability affects the function zlibstream::basicunzipstreambuf::underflow in the library /src/zipstreamimpl.h. Such manipulation leads to memory corruption. Local access is required to approach this attack. The exploit...
CVE-2025-10995 Open Babel zipstreamimpl.h underflow memory corruption
A security vulnerability has been detected in Open Babel up to 3.1.1. This vulnerability affects the function zlibstream::basicunzipstreambuf::underflow in the library /src/zipstreamimpl.h. Such manipulation leads to memory corruption. Local access is required to approach this attack. The exploit...
unzip-stream 0.3.1 - Arbitrary File Write
Exploit Title: unzip-stream 0.3.1 - Arbitrary File Write Date: 18th April, 2024 Exploit Author: Ardayfio Samuel Nii Aryee Software link: https://github.com/mhr3/unzip-stream Version: unzip-stream 0.3.1 Tested on: Ubuntu CVE: CVE-2024-42471 NB: Python's built-in zipfile module has limitations on t...
📄 unzip-stream 0.3.1 Arbitrary File Write
unzip-stream version 0.3.1 suffers from an arbitrary file write vulnerability. Exploit Title: unzip-stream 0.3.1 - Arbitrary File Write Date: 18th April, 2024 Exploit Author: Ardayfio Samuel Nii Aryee Software link: https://github.com/mhr3/unzip-stream Version: unzip-stream 0.3.1 Tested on: Ubunt...
GHSA-6JRJ-VC65-C983 unzip-stream allows Arbitrary File Write via artifact extraction
Impact When using the Extract method of unzip-stream, malicious zip files were able to write to paths they shouldn't be allowed to. Patches Fixed in 0.3.2 References - https://snyk.io/research/zip-slip-vulnerability - https://github.com/mhr3/unzip-stream/compare/v0.3.1...v0.3.2 Credits Justin Taf...
@c8y/application (>=1019.0.3 <=1019.24.6), @c8y/cli (>=10.0.7 <=1018.510.4) +99 more potentially affected by unknown CVE via unzip-stream (>=0.1.2 <=0.3.1)
unzip-stream NPM version =0.1.2, =1019.0.3, =10.0.7, =1019.0.3, =1019.0.3, =1019.4.8, =1019.4.8, =0.1.0, =0.1.0, =0.6.0, =0.2.0, =0.1.0, =0.0.1, =0.0.1, =0.0.1, =0.0.8 and more Source cves: unknown CVE Source advisory: OSV:GHSA-6JRJ-VC65-C983...
PT-2024-40128 · Unknown · Unzip-Stream
Name of the Vulnerable Software and Affected Versions: unzip-stream versions prior to 0.3.2 Description: The issue allows malicious zip files to write to unauthorized paths when using the Extract method of unzip-stream. A researcher from Google, Justin Taft, discovered this issue. Recommendations...