VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Zziplib Project
>
Zziplib
> 0.13.67
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2018-09-05
CVE-2018-16548
Missing Release of Resource after Effective Lifetime vulnerability in Zziplib Project Zziplib
An issue was discovered in ZZIPlib through 0.13.69.
network
low complexity
zziplib-project
CWE-772
6.5
6.5
2018-02-02
CVE-2018-6542
Unspecified vulnerability in Zziplib Project Zziplib 0.13.67
In ZZIPlib 0.13.67, there is a bus error (when handling a disk64_trailer seek value) caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.
network
low complexity
zziplib-project
6.5
6.5
2018-02-02
CVE-2018-6541
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c).
network
low complexity
zziplib-project
canonical
6.5
6.5
2018-02-02
CVE-2018-6540
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c.
network
low complexity
zziplib-project
canonical
6.5
6.5
2018-02-01
CVE-2018-6484
In ZZIPlib 0.13.67, there is a memory alignment error and bus error in the __zzip_fetch_disk_trailer function of zzip/zip.c.
network
low complexity
zziplib-project
canonical
6.5
6.5
2018-01-29
CVE-2018-6381
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated against the amount of file->stored data.
network
low complexity
zziplib-project
canonical
CWE-119
6.5
6.5