virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in zziplib RHSA-2018:3229

description-logoDescription

The zziplib is a lightweight library to easily extract data from zip files. Security Fix(es): * zziplib: out of bound read in mmapped.c:zzip_disk_fread() causes crash (CVE-2018-7725) * zziplib: Bus error in zip.c:__zzip_parse_root_directory() cause crash via crafted zip file (CVE-2018-7726) * zziplib: Memory leak in memdisk.c:zzip_mem_disk_new() can lead to denial of service via crafted zip (CVE-2018-7727) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.

affected-products-logoAffected Applications

zziplib

CVE References

CVE-2018-7725 CVE-2018-7726 CVE-2018-7727

Other References

https://access.redhat.com/errata/RHSA-2018:3229
ID 55303
Created Jan 17, 2020
Description
Updated		 Dec 20, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor RedHat
Patch auto
Application zziplib