Описание
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 0.13.62-3.1ubuntu0.17.10.1 |
| bionic | released | 0.13.62-3.1ubuntu0.18.04.1 |
| devel | released | 0.13.62-3.1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.13.62-2ubuntu0.2]] |
| esm-infra/bionic | released | 0.13.62-3.1ubuntu0.18.04.1 |
| esm-infra/xenial | released | 0.13.62-3ubuntu0.16.04.2 |
| precise/esm | DNE | |
| trusty | released | 0.13.62-2ubuntu0.2 |
| trusty/esm | DNE | trusty was released [0.13.62-2ubuntu0.2] |
| upstream | pending | 0.13.69 |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address ...
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.
Уязвимость функции zzip_disk_fread библиотеки архивирования ZZIPlib, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3