5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.3%
An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
lists.opensuse.org/opensuse-security-announce/2019-10/msg00065.html
lists.opensuse.org/opensuse-security-announce/2019-10/msg00066.html
access.redhat.com/errata/RHSA-2019:2196
github.com/gdraheim/zziplib/issues/58
lists.debian.org/debian-lts-announce/2020/06/msg00029.html