AVG-591 log
| Package | zziplib |
| Status | Fixed |
| Severity | Medium |
| Type | denial of service |
| Affected | 0.13.66-2 |
| Fixed | 0.13.67-1 |
| Current | 0.13.74-1 [extra] |
| Ticket | FS#57147 |
| Created | Thu Jan 18 22:45:07 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-5980 | Medium | Yes | Denial of service | The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash)... |
| References |
|---|
http://www.openwall.com/lists/oss-security/2017/02/14/3 https://github.com/gdraheim/zziplib/issues/4 |