CPE-90A142B0-EF50-407E-9ADA-C9201F336F54 Detail

CPE Details

zlib 1.2.1

Vendor

zlib

Product

zlib

Version

1.2.1

Created

2019-01-08
17h03 +00:00

Modified

2022-06-22
14h40 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:zlib:zlib:1.2.1:::::::*

Informations

Vendor

zlib

Product

zlib

Version

1.2.1

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-45853	2023-10-13 22h00 +00:00	MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an affected zlib version, and exposes the applicable MiniZip code through its compress API.	9.8	Critical
CVE-2022-37434	2022-08-05 00h00 +00:00	zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).	9.8	Critical
CVE-2018-25032	2022-03-24 23h00 +00:00	zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.	7.5	High
CVE-2016-9840	2017-05-23 01h56 +00:00	inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.	8.8	High
CVE-2016-9841	2017-05-23 01h56 +00:00	inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.	9.8	Critical
CVE-2016-9843	2017-05-23 01h56 +00:00	The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.	9.8	Critical
CVE-2005-2096	2005-07-06 02h00 +00:00	zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.	7.5
CVE-2004-0797	2004-09-14 02h00 +00:00	The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash).	2.1

zlib 1.2.1

CPE Details

CPE Name: cpe:2.3:a:zlib:zlib:1.2.1:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:zlib:zlib:1.2.1:::::::*