AVG-612 log
| Package | zziplib |
| Status | Fixed |
| Severity | Medium |
| Type | denial of service |
| Affected | 0.13.68-1 |
| Fixed | 0.13.69-1 |
| Current | 0.13.74-1 [extra] |
| Ticket | None |
| Created | Mon Feb 12 23:06:47 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2018-7727 | Low | No | Denial of service | A memory leak was found in unzip-mem.c and unzzip-mem.c of ZZIPlib before 0.13.69, that could lead to resource exhaustion. Local attackers could leverage... |
| CVE-2018-7726 | Medium | Yes | Denial of service | An improper input validation was found in function __zzip_fetch_disk_trailer of ZZIPlib before 0.13.69, that could lead to a crash in... |
| CVE-2018-7725 | Medium | Yes | Denial of service | An out of bounds read was found in function zzip_disk_fread of ZZIPlib before 0.13.69, when ZZIPlib mem_disk functionality is used. Remote attackers could... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 04 Apr 2018 | ASA-201804-3 | zziplib | denial of service |