Debian Zziplib vulnerabilities

24 known vulnerabilities affecting debian/zziplib.

Total CVEs
24
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM15LOW8

Vulnerabilities

Page 2 of 2
CVE-2017-5981MEDIUMCVSS 5.5fixed in zziplib 0.13.62-3.1 (bookworm)2017
CVE-2017-5981 [MEDIUM] CVE-2017-5981: zziplib - seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service ... seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file. Scope: local bookworm: resolved (fixed in 0.13.62-3.1) bullseye: resolved (fixed in 0.13.62-3.1) forky: resolved (fixed in 0.13.62-3.1) sid: resolved (fixed in 0.13.62-3.1) trixie: resolved (fixed in 0.13.62-3.1)
debian
CVE-2017-5974MEDIUMCVSS 5.5fixed in zziplib 0.13.62-3.1 (bookworm)2017
CVE-2017-5974 [MEDIUM] CVE-2017-5974: zziplib - Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.... Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file. Scope: local bookworm: resolved (fixed in 0.13.62-3.1) bullseye: resolved (fixed in 0.13.62-3.1) forky: resolved (fixed in 0.13.62-3.1) sid: re
debian
CVE-2017-5977MEDIUMCVSS 5.5fixed in zziplib 0.13.62-3.1 (bookworm)2017
CVE-2017-5977 [MEDIUM] CVE-2017-5977: zziplib - The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows r... The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file. Scope: local bookworm: resolved (fixed in 0.13.62-3.1) bullseye: resolved (fixed in 0.13.62-3.1) forky: resolved (fixed in 0.13.62-3.1) sid: resolved (fixed in 0.13.62-3.1) trixie: resolv
debian
CVE-2007-1614LOWCVSS 9.3fixed in zziplib 0.13.49-0 (bookworm)2007
CVE-2007-1614 [CRITICAL] CVE-2007-1614: zziplib - Stack-based buffer overflow in the zzip_open_shared_io function in zzip/file.c i... Stack-based buffer overflow in the zzip_open_shared_io function in zzip/file.c in ZZIPlib Library before 0.13.49 allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long filename. Scope: local bookworm: resolved (fixed in 0.13.49-0) bullseye: resolved (fixed in 0.13.49-0) forky: resolved (fixed in
debian
← Previous2 / 2