CVE-2018-6542

Опубликовано: 02 фев. 2018

Источник: redhat

CVSS3: 3.3

Описание

In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.

An unaligned memory access bug was found in the way ZZIPlib handled ZIP files. This flaw could potentially be used to crash the application using ZZIPlib by tricking the application into processing specially crafted ZIP files.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	zziplib	Not affected
Red Hat Enterprise Linux 8	zziplib	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-393

https://bugzilla.redhat.com/show_bug.cgi?id=1542257zziplib: bus error in zzip_disk_findfirst function in zzip/mmapped.c

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-6542

CVSS3: 6.5

ubuntu

около 8 лет назад

In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.

CVE-2018-6542

CVSS3: 6.5

nvd

около 8 лет назад

In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.

CVE-2018-6542

CVSS3: 6.5

debian

около 8 лет назад

In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trail ...

openSUSE-SU-2018:1564-1

suse-cvrf

больше 7 лет назад

Security update for zziplib

SUSE-SU-2018:1507-1

suse-cvrf

больше 7 лет назад

Security update for zziplib

3.3 Low

CVSS3