Gdraheim: >> Zziplib >> 0.13.69 Security Vulnerabilities
An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-08-22
Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file".
CVSS Score
3.3
EPSS Score
0.001
Published
2021-06-18
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
CVSS Score
5.5
EPSS Score
0.01
Published
2018-10-01
An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
CVSS Score
6.5
EPSS Score
0.005
Published
2018-09-05