Search CVE reports
11 – 15 of 15 results
Some fixes available 27 of 39
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
4 affected packages
zlib, rsync, klibc, zsync
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| zlib | Not affected | Not affected | Not affected | Not affected |
| rsync | Fixed | Fixed | Fixed | Fixed |
| klibc | Fixed | Fixed | Fixed | Fixed |
| zsync | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service...
2 affected packages
libcompress-raw-zlib-perl, perl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libcompress-raw-zlib-perl | — | — | — | — |
| perl | — | — | — | — |
inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of service (application crash) via an invalid file that causes a large dynamic tree to be produced.
6 affected packages
rpm, sash, dpkg, aide, ia32-libs, zlib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| rpm | — | — | — | — |
| sash | — | — | — | — |
| dpkg | — | — | — | — |
| aide | — | — | — | — |
| ia32-libs | — | — | — | — |
| zlib | — | — | — | — |
Some fixes available 19 of 21
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as...
9 affected packages
aide, bacula, dpkg, dump, ia32-libs...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| aide | — | — | — | — |
| bacula | — | — | — | — |
| dpkg | — | — | — | — |
| dump | — | — | — | — |
| ia32-libs | — | — | — | — |
| rpm | — | — | — | — |
| sash | — | — | — | — |
| zlib | — | — | — | — |
| zsync | — | — | — | — |
The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash).
1 affected package
zlib
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| zlib | — | — | — | — |