Gdraheim Zziplib vulnerabilities
24 known vulnerabilities affecting gdraheim/zziplib.
Total CVEs
24
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM21LOW1
Vulnerabilities
Page 2 of 2
CVE-2017-5981MEDIUMCVSS 5.5v0.13.622017-03-01
CVE-2017-5981 [MEDIUM] CWE-617 CVE-2017-5981: seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure a
seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file.
nvdosv
CVE-2017-5975MEDIUMCVSS 5.5v0.13.56v0.13.57+5 more2017-03-01
CVE-2017-5975 [MEDIUM] CWE-787 CVE-2017-5975: Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13
Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
nvdosv
CVE-2017-5977MEDIUMCVSS 5.5v0.13.622017-03-01
CVE-2017-5977 [MEDIUM] CWE-125 CVE-2017-5977: The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to c
The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file.
nvdosv
CVE-2007-1614CRITICALCVSS 9.3≥ 0, < 0.13.49-02007-03-23
CVE-2007-1614 [CRITICAL] CVE-2007-1614: Stack-based buffer overflow in the zzip_open_shared_io function in zzip/file
Stack-based buffer overflow in the zzip_open_shared_io function in zzip/file.c in ZZIPlib Library before 0.13.49 allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long filename.
osv
← Previous2 / 2