Information on source package zziplib

Available versions

ReleaseVersion
jessie (security)0.13.62-3+deb8u1
stretch0.13.62-3.1
buster0.13.62-3.1
sid0.13.62-3.1

Open issues

BugjessiestretchbustersidDescription
CVE-2018-7727vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in ZZIPlib 0.13.68. There is a memory leak ...
CVE-2018-7726vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in ZZIPlib 0.13.68. There is a bus error caused ...
CVE-2018-7725vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableAn issue was discovered in ZZIPlib 0.13.68. An invalid memory address ...
CVE-2018-6869vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a ...
CVE-2018-6542vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn ZZIPlib 0.13.67, there is a bus error (when handling a ...
CVE-2018-6541vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn ZZIPlib 0.13.67, there is a bus error caused by loading of a ...
CVE-2018-6540vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn ZZIPlib 0.13.67, there is a bus error caused by loading of a ...
CVE-2018-6484vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn ZZIPlib 0.13.67, there is a memory alignment error and bus error in ...
CVE-2018-6381vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableIn ZZIPlib 0.13.67, there is a segmentation fault caused by invalid ...
CVE-2018-16548vulnerablevulnerablevulnerablevulnerableAn issue was discovered in ZZIPlib through 0.13.69. There is a memory ...
CVE-2017-5977vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerablevulnerableThe zzip_mem_entry_extra_block function in memdisk.c in zziplib ...

Resolved issues

BugDescription
CVE-2017-5981seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial ...
CVE-2017-5980The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows ...
CVE-2017-5979The prescan_entry function in fseeko.c in zziplib 0.13.62 allows ...
CVE-2017-5978The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows ...
CVE-2017-5976Heap-based buffer overflow in the zzip_mem_entry_extra_block function ...
CVE-2017-5975Heap-based buffer overflow in the __zzip_get64 function in fetch.c in ...
CVE-2017-5974Heap-based buffer overflow in the __zzip_get32 function in fetch.c in ...
CVE-2007-1614Stack-based buffer overflow in the zzip_open_shared_io function in ...

Security announcements

DSA / DLADescription
DLA-1287-1zziplib - security update
DLA-994-1zziplib - security update
DSA-3878-1zziplib - security update

Search for package or bug name: Reporting problems