ZZIPlib Project ZZIPlib 0.13.60

CPE Details

ZZIPlib Project ZZIPlib 0.13.60
zziplib_project
zziplib
0.13.60
2019-06-11
11h54 +00:00
2019-06-11
11h54 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:zziplib_project:zziplib:0.13.60:*:*:*:*:*:*:*

Informations

Vendor

zziplib_project

Product

zziplib

Version

0.13.60

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-16548 2018-09-05 19h00 +00:00 An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
6.5
Medium
CVE-2017-5974 2017-03-01 14h00 +00:00 Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
5.5
Medium
CVE-2017-5975 2017-03-01 14h00 +00:00 Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
5.5
Medium
CVE-2017-5976 2017-03-01 14h00 +00:00 Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file.
5.5
Medium