CVE-2026-22184 — Out-of-bounds Write in Zlib

CWE-787 — Out-of-bounds Write CWE-120 — Classic Buffer Overflow7 documents7 sources

Severity

4.6MEDIUMNVD

EPSS

0.0%

top 99.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Zlib Debian Zlib Zlib Software Zlib +20 more

Timeline

PublishedJan 7

Latest updateJan 13

Description

zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under contrib/untgz. The vulnerability is limited to the standalone demonstration utility and does not affect the core zlib compression library. The flaw occurs when a user executes the untgz command with an excessively long archive name supplied via the command line, leading to an out-of-bounds write in a fixed-size global buffer.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Packages24 packages

▶debiandebian/zlib< zlib 1:1.2.6.dfsg-1 (bookworm)

▶Debianzlib/zlib< 1:1.2.6.dfsg-1+3

▶NVDzlib/zlib1.3.1.2

▶CVEListV5zlib_software/zlib1.3.1.2

▶msrcmsrc/azl3_zlib_1.3.1-1

🔴Vulnerability Details

GHSA

GHSA-7687-3v4j-49fr: zlib versions up to and including 1↗2026-01-07

▶

OSV

CVE-2026-22184: zlib versions up to and including 1↗2026-01-07

▶

📋Vendor Advisories

Microsoft

zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname()↗2026-01-13

▶

Red Hat

zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility↗2026-01-07

▶

Debian

CVE-2026-22184: zlib - zlib versions up to and including 1.3.1.2 include a global buffer overflow in th...↗2026

▶

🕵️Threat Intelligence

Wiz

CVE-2026-22184 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶