Описание
zchunk before 1.3.2 has multiple integer overflows via malformed zchunk files to lib/comp/comp.c, lib/comp/zstd/zstd.c, lib/dl/multipart.c, or lib/header.c.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| zchunk | fixed | 1.3.2+ds1-1 | package | |
| zchunk | no-dsa | bookworm | package | |
| zchunk | no-dsa | bullseye | package |
Примечания
https://github.com/zchunk/zchunk/commit/08aec2b4dfd7f709b6e3d511411ffcc83ed4efbe (1.3.2)
https://bugzilla.suse.com/show_bug.cgi?id=1216268
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 1 года назад
zchunk before 1.3.2 has multiple integer overflows via malformed zchunk files to lib/comp/comp.c, lib/comp/zstd/zstd.c, lib/dl/multipart.c, or lib/header.c.
CVSS3: 7.8
nvd
больше 1 года назад
zchunk before 1.3.2 has multiple integer overflows via malformed zchunk files to lib/comp/comp.c, lib/comp/zstd/zstd.c, lib/dl/multipart.c, or lib/header.c.
