7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.4%
It was discovered that zlib incorrectly handled pointer arithmetic. An attacker
could use this issue to cause zlib to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2016-9840, CVE-2016-9841)
It was discovered that zlib incorrectly handled vectors involving left shifts of
negative integers. An attacker could use this issue to cause zlib to
crash, resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-9842)
It was discovered that zlib incorrectly handled vectors involving big-endian CRC
calculation. An attacker could use this issue to cause zlib to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-9843)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 16.04 | noarch | lib32z1 | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | lib32z1-dbgsym | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | lib32z1-dev | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | lib32z1-dev-dbgsym | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | libx32z1 | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | libx32z1-dbgsym | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | libx32z1-dev | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | libx32z1-dev-dbgsym | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | zlib1g | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
Ubuntu | 16.04 | noarch | zlib1g-dbg | < 1:1.2.8.dfsg-2ubuntu4.3 | UNKNOWN |
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
10 High
AI Score
Confidence
High
0.014 Low
EPSS
Percentile
86.4%