Описание
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 0.13.62-3.1ubuntu0.17.10.1 |
| bionic | released | 0.13.62-3.1ubuntu0.18.04.1 |
| devel | released | 0.13.62-3.1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.13.62-2ubuntu0.2]] |
| esm-infra/bionic | released | 0.13.62-3.1ubuntu0.18.04.1 |
| esm-infra/xenial | released | 0.13.62-3ubuntu0.16.04.2 |
| precise/esm | DNE | |
| trusty | released | 0.13.62-2ubuntu0.2 |
| trusty/esm | DNE | trusty was released [0.13.62-2ubuntu0.2] |
| upstream | needs-triage |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misali ...
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
Уязвимость функции __zzip_fetch_disk_trailer библиотеки архивирования ZZIPlib, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3