AVG-612

Package zziplib
Status Fixed
Severity Medium
Type denial of service
Affected 0.13.68-1
Fixed 0.13.69-1
Current 0.13.69-1 [extra]
Ticket None
Created Mon Feb 12 23:06:47 2018
Issue Severity Remote Type Description
CVE-2018-7727 Low No Denial of service
A memory leak was found in unzip-mem.c and unzzip-mem.c of ZZIPlib before 0.13.69, that could lead to resource exhaustion. Local attackers could leverage...
CVE-2018-7726 Medium Yes Denial of service
An improper input validation was found in function __zzip_fetch_disk_trailer of ZZIPlib before 0.13.69, that could lead to a crash in...
CVE-2018-7725 Medium Yes Denial of service
An out of bounds read was found in function zzip_disk_fread of ZZIPlib before 0.13.69, when ZZIPlib mem_disk functionality is used. Remote attackers could...
Date Advisory Package Description
04 Apr 2018 ASA-201804-3 zziplib denial of service