CVE-2026-4176

A flaw was found in Perl, stemming from its inclusion of an outdated Compress::Raw::Zlib module. This module bundles a vulnerable version of the zlib library, which is known to contain multiple security flaws, including CVE-2026-3381 and CVE-2026-27171. Exploitation of these underlying...

AZL-79286 CVE-2026-3381 affecting package teckit 2.5.12-4

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

Windows binary of "Virtual Floppy Drive 2.1" contains vulnerable zlib (CAN-2005-2096)

The binary of the presumably not widely used Windows software "Virtual Floppy Drive 2.1" http://chitchat.at.infoseek.co.jp/vmware/vfd.html ships with a vfd.dll that is statically linked against zlib 1.2.2 http://www.zlib.net/ which is vulnerable to CAN-2005-2096. A scan with ClamAV against the...

Official Windows binaries of "curl" contain vulnerable zlib 1.2.2 (CAN-2005-2096)

The Windows binaries of "curl", built by the author and maintainer of curl and available for download at http://curl.haxx.se/download.html are linked with zlib 1.2.2 http://www.zlib.net/, which is but vulnerable to CAN-2005-2096: | x:curl -V | curl 7.17.0 i586-pc-mingw32msvc libcurl/7.17.0...

Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)

The Windows binary GSV48W32.EXE of "gsview" http://pages.cs.wisc.edu/ghost/gsview/ ftp://mirror.cs.wisc.edu/pub/mirrors/ghost/ghostgum/gsv48w32.exe ships with a zlib32.dll originally named zlib.dll v1.2.2 http://www.zlib.net/ which is vulnerable to CAN-2005-2096. The zlib32.dll is dated 2005-03-0...