Описание
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 5.52-6ubuntu4.1 |
| devel | released | 5.52-10ubuntu2 |
| edgy | released | 5.52-8ubuntu1.1 |
| feisty | released | 5.52-9ubuntu3.1 |
| gutsy | released | 5.52-10ubuntu1.1 |
| upstream | needed |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data.
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data.
The NEEDBITS macro in the inflate_dynamic function in inflate.c for un ...
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data.
EPSS
9.3 Critical
CVSS2