Astra Linux - уязвимость в zziplib

The infinite loop in zziplib v0.13.69 allows remote attackers to cause a denial of service by using the return value “zzipfileread” in the function “unzzipcatfile”...

Linux Distros Unpatched Vulnerability : CVE-2018-6542

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ZZIPlib 0.13.67, there is a bus error when handling a disk64trailer seek value caused by loading of a misaligned address in the zzipdiskfindfirst function of...

SUSE CVE-2007-1614

Stack-based buffer overflow in the zzipopensharedio function in zzip/file.c in ZZIPlib Library before 0.13.49 allows user-assisted remote attackers to cause a denial of service application crash or execute arbitrary code via a long filename...

SUSE CVE-2017-5976

Heap-based buffer overflow in the zzipmementryextrablock function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service crash via a crafted ZIP file...

SUSE CVE-2017-5977

The zzipmementryextrablock function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service invalid memory read and crash via a crafted ZIP file...

SUSE CVE-2018-16548

An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function zzipparserootdirectory in zip.c, which will lead to a denial of service attack...

UBUNTU-CVE-2020-18442

Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzipfileread" in the function "unzzipcatfile"...

zziplib: Memory leak in memdisk.c:zzip_mem_disk_new() can lead to denial of service via crafted zip

A memory leak was found in unzip-mem.c and unzzip-mem.c of ZZIPlib, up to v0.13.68, that could lead to resource exhaustion. Local attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

UBUNTU-CVE-2018-17828

Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. dot dot in a zip file, because of the function unzzipcat in the bins/unzzipcat-mem.c file...

UBUNTU-CVE-2018-7727

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzipmemdisknew in memdisk.c, which will lead to a denial of service attack...

DEBIAN-CVE-2018-6869

In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a crash in the zzipparserootdirectory function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

UBUNTU-CVE-2018-6540

In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzipdiskfindfirst function of zzip/mmapped.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

DEBIAN-CVE-2018-6484

In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the zzipfetchdisktrailer function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...

DEBIAN-CVE-2018-6381

In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...

UBUNTU-CVE-2018-6381

In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...

DEBIAN-CVE-2017-5981

seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service assertion failure and crash via a crafted ZIP file...

ZZIPlib '__zzip_get64' Heap Buffer Overflow Vulnerability

ZZIPlib is a lightweight used to extract files from the ZIP file to read the C language package , but also can be used to compress multiple files into zip format , using the zlib library development . ZZIPlib 'zzipget64' has a heap buffer overflow vulnerability. An attacker can exploit this...

ZZIPlib '__zzip_get32' Heap Buffer Overflow Vulnerability

ZZIPlib is a lightweight used to extract files from the ZIP file to read the C language package , but also can be used to compress multiple files into zip format , using the zlib library development . ZZIPlib 'zzipget32' has a heap buffer overflow vulnerability. An attacker can exploit this...

ZZIPlib 'zzip_mem_entry_extra_block' memory read vulnerability

ZZIPlib is a lightweight used to extract files from the ZIP file to read the C language package , but also can be used to compress multiple files into zip format , using the zlib library development . A memory read vulnerability exists in ZZIPlib 'zzipmementryextrablock'. An attacker can exploit...

ZZIPlib 'zzip_mem_entry_new' NULL Pointer Reference Denial of Service Vulnerability

ZZIPlib is a lightweight used to extract files from the ZIP file to read the C language package , but also can be used to compress multiple files into zip format , using the zlib library development . ZZIPlib NULL pointer reference denial of service vulnerability. An attacker could exploit this...