Описание
Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.7.2+dfsg-10ubuntu0.1 |
| cosmic | released | 0.7.2+dfsg-12ubuntu0.1 |
| devel | released | 0.7.2+dfsg-13ubuntu1 |
| disco | released | 0.7.2+dfsg-13ubuntu0.19.04.1 |
| esm-apps/bionic | released | 0.7.2+dfsg-10ubuntu0.1 |
| esm-apps/xenial | released | 0.7.2+dfsg-6ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.1.5.9+cvs.2007.04.28-10ubuntu0.18.04.1 |
| cosmic | released | 0.1.5.9+cvs.2007.04.28-10ubuntu0.18.10.1 |
| devel | released | 0.1.5.9+cvs.2007.04.28-10ubuntu1 |
| disco | released | 0.1.5.9+cvs.2007.04.28-10ubuntu0.19.04.1 |
| esm-apps/bionic | released | 0.1.5.9+cvs.2007.04.28-10ubuntu0.18.04.1 |
| esm-apps/xenial | released | 0.1.5.9+cvs.2007.04.28-5.2ubuntu0.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was released [0.1.5.9+cvs.2007.04.28-5.1ubuntu0.14.04.1~esm1] |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | released | 0.1.5.9+cvs.2007.04.28-5.1ubuntu0.14.04.1~esm1 |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().
Zipios before 0.1.7 does not properly handle certain malformed zip arc ...
Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().
4.3 Medium
CVSS2
6.5 Medium
CVSS3