EUVD-2023-52187

Malicious code in bioql PyPI...

llvm-toolset:rhel8 bug fix and enhancement update

An update is available for lld, compiler-rt, module.lld, lldb, python-lit, module.python-lit, module.lldb, llvm, libomp, module.compiler-rt, clang, module.libomp, module.llvm, module.clang. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a...

ROS-20240328-13

A vulnerability in the mzpathresolve function in zlib-ng minizip-ng is related to a buffer overflow via the created file of the mzpathhasslash function in the mzos.c file. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code A vulnerability in the...

Fedora: Security Advisory for minizip-ng (FEDORA-2023-2ca76c3aae)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2023-5aa1ebc5e9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 38 : minizip-ng (2023-2ca76c3aae)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-2ca76c3aae advisory. Fix for CVE-2023-48107 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for...

CVE-2023-48107

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

CVE-2023-48107

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

Buffer overflow

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

Buffer overflow

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

CVE-2023-48106

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathresolve function in the mzos.c file...

CVE-2023-48107

CVE-2023-48107 is a Buffer Overflow in zlib-ng minizip-ng v4.0.2 that allows arbitrary code execution via a crafted file targeting mz_path_has_slash() in mz_os.c. The NVD entry documents a high-severity, network-exploitable issue with a CVSS v3.1 base score of 8.8 (C:H, I:H, A:H; AV:N/AC:L/PR:N/U...

CVE-2023-48107

Buffer Overflow vulnerability in zlib-ng minizip-ng v.4.0.2 allows an attacker to execute arbitrary code via a crafted file to the mzpathhasslash function in the mzos.c file...

CVE-2023-48106

CVE-2023-48106: Buffer overflow in zlib-ng minizip-ng 4.0.2 via mz_path_resolve() in mz_os.c that can allow remote code execution when processing a crafted file. Public details confirm vulnerable component and root cause; exploitation status not provided. Affected software is minizip-ng v4.0.2; C...

zlib-ng/minigzip_fuzzer: Use-of-uninitialized-value in gz_open

Project: https://github.com/sebpop/zlib-ng.git https://github.com/zlib-ng/zlib-ng.git Detailed report: https://oss-fuzz.com/testcase?key=5751241414541312 Project: zlib-ng Fuzzer: libFuzzerzlib-ngminigzipfuzzer Fuzz target binary: minigzipfuzzer Job Type: libfuzzermsanzlib-ng Platform Id: linux...

zlib-ng/compress_fuzzer: Crash in quick_send_bits

Project: https://github.com/sebpop/zlib-ng.git https://github.com/zlib-ng/zlib-ng.git Detailed report: https://oss-fuzz.com/testcase?key=5694515942785024 Project: zlib-ng Fuzzer: libFuzzerzlib-ngcompressfuzzer Fuzz target binary: compressfuzzer Job Type: libfuzzermsanzlib-ng Platform Id: linux...

zlib-ng/compress_fuzzer: Negative-size-param in compress_fuzzer.c

Project: https://github.com/sebpop/zlib-ng.git https://github.com/zlib-ng/zlib-ng.git Detailed report: https://oss-fuzz.com/testcase?key=4634639783165952 Project: zlib-ng Fuzzer: libFuzzerzlib-ngcompressfuzzer Fuzz target binary: compressfuzzer Job Type: libfuzzerasanzlib-ng Platform Id: linux...