minizip
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Mini zip and unzip based on zlib |
| Version | 1:1.3.1-1 [core] |
Open
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2847 | 1:1.3-1 | Critical | Vulnerable |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2023-45853 | AVG-2847 | Critical | No | Arbitrary code execution | MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. |