AZL-77988 CVE-2026-27171 affecting package clucene 2.3.3.4-40

zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because x2nmodp can do right shifts within a loop that has no termination condition...

CVE-2023-38713

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that could aid in further attacks against the system...

AZL-43675 CVE-2018-25032 affecting package clucene 2.3.3.4-38

zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches...

AZL-44181 CVE-2018-25032 affecting package clucene 2.3.3.4-40

zlib before 1.2.12 allows memory corruption when deflating i.e., when compressing if the input has many distant matches...