4 matches found
MiracleLinux 9 : zziplib-0.13.71-11.el9 (AXSA:2024-7802:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7802:01 advisory. zziplib: invalid memory access at zzipdiskentrytofileheader in mmapped.c CVE-2020-18770 Tenable has extracted the preceding description block directly from t...
DEBIAN-CVE-2024-39134
A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the zzipfetchdisktrailer function at /zzip/zip.c...
PT-2024-10417 · Zziplib +3 · Zziplib +3
Name of the Vulnerable Software and Affected Versions: zziplib version 0.13.77 Description: The issue is related to a buffer copy without input validation in the zzip fetch disk trailer function of the /zzip/zip.c component in the ZZIPlib archiving library. This can be exploited by a remote...
PT-2018-3544 · Zziplib +6 · Zziplib +6
Name of the Vulnerable Software and Affected Versions: ZZIPlib versions 0.13.68 Description: The issue is related to a memory leak in the zzip mem disk new function of the ZZIPlib library. This leak occurs due to a resource not being released after its expiration. An attacker, potentially acting...