11 matches found
EulerOS 2.0 SP3 : zziplib (EulerOS-SA-2018-1397)
According to the versions of the zziplib package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - zziplib: out of bound read in mmapped.c:zzipdiskfread causes crash.CVE-2018-7725 - zziplib: Bus error in zip.c:zzipparserootdirectory cause cras...
zziplib: out of bound read in mmapped.c:zzip_disk_fread() causes crash
An out of bounds read was found in function zzipdiskfread of ZZIPlib, up to 0.13.68, when ZZIPlib memdisk functionality is used. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file...
DEBIAN-CVE-2018-7725
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzipdiskfread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service...
CVE-2018-6381
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...
Segmentation Fault
ZZIPlib is vulnerable to segmentation faults. Attackers can cause these faults because the zzipdiskfread function attempts to access invalid memory. It tries to do this because the size variable isn't compared against the amount of file-stored data...
ZZIPlib 'zzip_disk_fread' function invalid memory access vulnerability
ZZIPlib is a set of lightweight file compression tools. A security vulnerability exists in the 'zzipdiskfread' function in the zzip/mmapped.c file in ZZIPlib version 0.13.67. An attacker can exploit this vulnerability to cause a denial of service invalid memory access and segmentation errors...
Design/Logic Flaw
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...
CVE-2018-6381
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...
CVE-2018-6381
CVE-2018-6381 affects ZZIPlib 0.13.67 and earlier, caused by a segmentation fault from invalid memory access in zzip_disk_fread (zzip/mmapped.c) where size is not validated against file->stored data. Connected documents corroborate a range of ZZIPlib issues and advise upgrading to later releas...
CVE-2018-6381
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...
CVE-2018-6381
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzipdiskfread function zzip/mmapped.c because the size variable is not validated against the amount of...