Vulnerabilities > Zziplib Project

DATE CVE VULNERABILITY TITLE RISK
2023-08-22 CVE-2020-18770 Unspecified vulnerability in Zziplib Project Zziplib 0.13.69
An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.
local
low complexity
zziplib-project
5.5
2021-06-18 CVE-2020-18442 Infinite Loop vulnerability in multiple products
Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".
3.3
2018-10-01 CVE-2018-17828 Path Traversal vulnerability in Zziplib Project Zziplib 0.13.69
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a ..
local
low complexity
zziplib-project CWE-22
5.5
2018-09-05 CVE-2018-16548 Missing Release of Resource after Effective Lifetime vulnerability in Zziplib Project Zziplib
An issue was discovered in ZZIPlib through 0.13.69.
network
low complexity
zziplib-project CWE-772
6.5
2018-03-06 CVE-2018-7727 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
An issue was discovered in ZZIPlib 0.13.68.
network
low complexity
zziplib-project redhat CWE-772
6.5
2018-03-06 CVE-2018-7726 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in ZZIPlib 0.13.68.
network
low complexity
zziplib-project canonical redhat CWE-119
6.5
2018-03-06 CVE-2018-7725 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in ZZIPlib 0.13.68.
network
low complexity
zziplib-project canonical redhat CWE-119
6.5
2018-02-09 CVE-2018-6869 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a crash in the __zzip_parse_root_directory function of zzip/zip.c.
network
low complexity
zziplib-project debian canonical CWE-770
6.5
2018-02-02 CVE-2018-6542 Unspecified vulnerability in Zziplib Project Zziplib 0.13.67
In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.
network
low complexity
zziplib-project
6.5
2018-02-02 CVE-2018-6541 In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c).
network
low complexity
zziplib-project canonical
6.5