Information on source package zziplib

Available versions

ReleaseVersion
jessie (security)0.13.62-3+deb8u1
stretch0.13.62-3.2~deb9u1
buster0.13.62-3.2
sid0.13.62-3.2

Open issues

BugjessiestretchbustersidDescription
CVE-2018-7726vulnerable (no DSA)fixedfixedfixedAn issue was discovered in ZZIPlib 0.13.68. There is a bus error cause ...
CVE-2018-7725vulnerable (no DSA)fixedfixedfixedAn issue was discovered in ZZIPlib 0.13.68. An invalid memory address ...
CVE-2018-6869vulnerable (no DSA)fixedfixedfixedIn ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a c ...
CVE-2018-6541vulnerable (no DSA)fixedfixedfixedIn ZZIPlib 0.13.67, there is a bus error caused by loading of a misali ...
CVE-2018-6540vulnerable (no DSA)fixedfixedfixedIn ZZIPlib 0.13.67, there is a bus error caused by loading of a misali ...
CVE-2018-6484vulnerable (no DSA)fixedfixedfixedIn ZZIPlib 0.13.67, there is a memory alignment error and bus error in ...
CVE-2018-6381vulnerable (no DSA)fixedfixedfixedIn ZZIPlib 0.13.67, there is a segmentation fault caused by invalid me ...
CVE-2018-16548vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in ZZIPlib through 0.13.69. There is a memory ...

Open unimportant issues

BugjessiestretchbustersidDescription
CVE-2018-7727vulnerablevulnerablevulnerablevulnerableAn issue was discovered in ZZIPlib 0.13.68. There is a memory leak tri ...
CVE-2018-6542vulnerablevulnerablevulnerablevulnerableIn ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trail ...
CVE-2018-17828vulnerablevulnerablevulnerablevulnerableDirectory traversal vulnerability in ZZIPlib 0.13.69 allows attackers ...

Resolved issues

BugDescription
CVE-2017-5981seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial o ...
CVE-2017-5980The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows ...
CVE-2017-5979The prescan_entry function in fseeko.c in zziplib 0.13.62 allows remot ...
CVE-2017-5978The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows ...
CVE-2017-5977The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.6 ...
CVE-2017-5976Heap-based buffer overflow in the zzip_mem_entry_extra_block function ...
CVE-2017-5975Heap-based buffer overflow in the __zzip_get64 function in fetch.c in ...
CVE-2017-5974Heap-based buffer overflow in the __zzip_get32 function in fetch.c in ...
CVE-2007-1614Stack-based buffer overflow in the zzip_open_shared_io function in zzi ...

Security announcements

DSA / DLADescription
DLA-1287-1zziplib - security update
DLA-994-1zziplib - security update
DSA-3878-1zziplib - security update

Search for package or bug name: Reporting problems