Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2024:3127

Опубликовано: 07 мая 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: zziplib security update

The zziplib is a lightweight library to easily extract data from zip files.

Security Fix(es):

  • zziplib: invalid memory access at zzip_disk_entry_to_file_header in mmapped.c (CVE-2020-18770)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.10 Release Notes linked from the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
zziplibx86_6413.el8_10zziplib-0.13.68-13.el8_10.x86_64.rpm
zziplib-utilsx86_6413.el8_10zziplib-utils-0.13.68-13.el8_10.x86_64.rpm

Показывать по

Связанные CVE

CVE-2020-18770

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2020-18770

CVSS3: 5.5
ubuntu
почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

redhat логотип

CVE-2020-18770

CVSS3: 5.5
redhat
почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

nvd логотип

CVE-2020-18770

CVSS3: 5.5
nvd
почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

msrc логотип

CVE-2020-18770

CVSS3: 5.5
msrc
3 месяца назад

Описание отсутствует

debian логотип

CVE-2020-18770

CVSS3: 5.5
debian
почти 2 года назад

An issue was discovered in function zzip_disk_entry_to_file_header in ...