Search CVE reports
11 – 12 of 12 results
Some fixes available 19 of 21
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as...
9 affected packages
aide, bacula, dpkg, dump, ia32-libs...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| aide | — | — | — | — |
| bacula | — | — | — | — |
| dpkg | — | — | — | — |
| dump | — | — | — | — |
| ia32-libs | — | — | — | — |
| rpm | — | — | — | — |
| sash | — | — | — | — |
| zlib | — | — | — | — |
| zsync | — | — | — | — |
The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash).
1 affected package
zlib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| zlib | — | — | — | — |