4 matches found
EUVD-2022-15656
Malicious code in bioql PyPI...
The vulnerability of the UnZip file archiver, related to pointer swapping errors, allows a hacker to trigger a service failure.
The vulnerability of the UnZip file archiver is related to errors in pointer manipulation due to improper handling of Unicode strings. Exploiting this vulnerability can allow an attacker to trigger a service failure using a specially created zip file...
Denial Of Service (DoS)
unzip is vulnerable to denial of service. The vulnerability exists due to a heap of out-of-bound write during the conversion of a wide string to a local string allowing an attacker to crash the system via a maliciosuly crafted zip file...
DEBIAN-CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...