Information on source package zziplib

Available versions

ReleaseVersion
wheezy0.13.56-1.1
wheezy (security)0.13.56-1.1+deb7u1
jessie (security)0.13.62-3+deb8u1
stretch0.13.62-3.1
buster0.13.62-3.1
sid0.13.62-3.1

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-5977vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableThe zzip_mem_entry_extra_block function in memdisk.c in zziplib ...

Resolved issues

BugDescription
CVE-2017-5981seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial ...
CVE-2017-5980The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows ...
CVE-2017-5979The prescan_entry function in fseeko.c in zziplib 0.13.62 allows ...
CVE-2017-5978The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows ...
CVE-2017-5976Heap-based buffer overflow in the zzip_mem_entry_extra_block function ...
CVE-2017-5975Heap-based buffer overflow in the __zzip_get64 function in fetch.c in ...
CVE-2017-5974Heap-based buffer overflow in the __zzip_get32 function in fetch.c in ...
CVE-2007-1614Stack-based buffer overflow in the zzip_open_shared_io function in ...

Security announcements

DSA / DLADescription
DLA-994-1zziplib - security update
DSA-3878-1zziplib - security update

Search for package or bug name: Reporting problems