CVE-2020-18770

Опубликовано: 28 окт. 2023

Источник: redhat

CVSS3: 5.5

Описание

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

An invalid memory access flaw was found in the mmapped.c file's zzip_disk_entry_to_file_header function in Zziplib. This issue could allow an attacker to entice a victim into opening a specially crafted file, leading to a denial of service.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	zziplib	Out of support scope
Red Hat Enterprise Linux 8	zziplib	Fixed	RHSA-2024:3127	22.05.2024
Red Hat Enterprise Linux 9	zziplib	Fixed	RHSA-2024:2377	30.04.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-119

https://bugzilla.redhat.com/show_bug.cgi?id=2246907zziplib: invalid memory access at zzip_disk_entry_to_file_header in mmapped.c

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-18770

CVSS3: 5.5

ubuntu

почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

CVE-2020-18770

CVSS3: 5.5

nvd

почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

CVE-2020-18770

CVSS3: 5.5

msrc

3 месяца назад

Описание отсутствует

CVE-2020-18770

CVSS3: 5.5

debian

почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in ...

SUSE-SU-2024:0961-1

suse-cvrf

больше 1 года назад

Security update for zziplib

5.5 Medium

CVSS3