Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-18384

Опубликовано: 16 окт. 2018
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.5

Описание

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.

РелизСтатусПримечание
bionic

not-affected

6.0-21ubuntu1
cosmic

not-affected

devel

not-affected

disco

not-affected

eoan

not-affected

esm-infra-legacy/trusty

released

6.0-9ubuntu1.6
esm-infra/bionic

not-affected

6.0-21ubuntu1
esm-infra/focal

not-affected

esm-infra/xenial

not-affected

6.0-20ubuntu1
focal

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 85%
0.02754
Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-18384

CVSS3: 3.3
redhat
почти 7 лет назад

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.

nvd логотип

CVE-2018-18384

CVSS3: 5.5
nvd
почти 7 лет назад

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.

msrc логотип

CVE-2018-18384

CVSS3: 5.5
msrc
около 5 лет назад

Описание отсутствует

debian логотип

CVE-2018-18384

CVSS3: 5.5
debian
почти 7 лет назад

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive ...

suse-cvrf логотип

openSUSE-SU-2019:1117-1

suse-cvrf
больше 6 лет назад

Security update for unzip

EPSS

Процентиль: 85%
0.02754
Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3