CVE-2018-7727

Опубликовано: 06 мар. 2018

Источник: debian

EPSS Низкий

Описание

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
zziplib	unfixed			package

Примечания

https://github.com/gdraheim/zziplib/issues/40
https://github.com/gdraheim/zziplib/commit/83a2da55922f67e07f22048ac9671a44cc0d35c4 (v0.13.69)
unzzipcat-mem and unzzipdir-mem not installed into binary packages.

EPSS

Процентиль: 27%

0.00094

Низкий

Связанные уязвимости

CVE-2018-7727

CVSS3: 6.5

ubuntu

больше 7 лет назад

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

CVE-2018-7727

CVSS3: 3.3

redhat

больше 7 лет назад

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

CVE-2018-7727

CVSS3: 6.5

nvd

больше 7 лет назад

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

GHSA-4g2g-r89f-8qqm

CVSS3: 6.5

github

больше 3 лет назад

An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack.

BDU:2020-03948

CVSS3: 6.5

fstec

больше 7 лет назад

Уязвимость функции zzip_mem_disk_new библиотеки архивирования ZZIPlib, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 27%

0.00094

Низкий