Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:SUSE-SU-2024:2431-1

HistoryJul 12, 2024 - 1:01 p.m.

Vulners
/
Osv
/
Security update for zlib

Security update for zlib

2024-07-1213:01:56

Google

osv.dev

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

High

JSON

This update for zlib fixes the following issues:

CVE-2023-45853: Fixed an integer overflow that would lead to a
buffer overflow in the minizip subcomponent (bsc#1216378).

References

bugzilla.suse.com/1216378

www.suse.com/security/cve/CVE-2023-45853

www.suse.com/support/update/announcement/2024/suse-su-20242431-1/

nessus 48

openvas 38

debiancve 1

cbl_mariner 13

nvd 1

wolfi 1

ubuntucve 1

osv 5

alpinelinux 1

cgr 1

veracode 1

debian 1

github 2

cvelist 1

gentoo 1

ibm 9

redhatcve 1

vulnrichment 1

cloudlinux 1

cve 1

amazon 1

prion 1

mageia 1

redos 1

photon 3

rosalinux 1

redhat 1

qualysblog 1

oracle 1

ics 1

nessus

EulerOS 2.0 SP8 : zlib (EulerOS-SA-2024-1308)

2024-03-12 00:00:00

EulerOS Virtualization 2.10.0 : zlib (EulerOS-SA-2024-1394)

2024-03-14 00:00:00

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : zlib (SUSE-SU-2023:4217-1)

2023-10-27 00:00:00

openvas

Huawei EulerOS: Security Advisory for zlib (EulerOS-SA-2024-1100)

2024-01-09 00:00:00

Huawei EulerOS: Security Advisory for zlib (EulerOS-SA-2024-1373)

2024-03-14 00:00:00

SUSE: Security Advisory (SUSE-SU-2023:4216-1)

2023-10-27 00:00:00

debiancve

CVE-2023-45853

2023-10-14 02:15:09

cbl_mariner

CVE-2023-45853 affecting package zlib for versions less than 1.2.13-2

2023-10-25 19:58:19

CVE-2023-45853 affecting package cloud-hypervisor for versions less than 32.0-2

2023-10-31 17:14:33

CVE-2023-45853 affecting package boost for versions less than 1.76.0-4

2023-10-31 17:32:47

nvd

CVE-2023-45853

2023-10-14 02:15:09

wolfi

CVE-2023-45853 vulnerabilities

2024-09-19 21:18:36

ubuntucve

CVE-2023-45853

2023-10-14 00:00:00

osv

minizip - security update

2023-11-28 00:00:00

CGA-jq67-276v-crw8

2024-06-06 12:26:07

pyminizip affected by zlib's integer overflow/heap based buffer overflow vulnerability due to vulnerable dependency

2023-10-14 03:31:16

alpinelinux

CVE-2023-45853

2023-10-14 02:15:09

cgr

CVE-2023-45853 vulnerabilities

2024-05-19 03:07:16

veracode

Buffer Overflow

2023-10-24 02:58:39

debian

[SECURITY] [DLA 3670-1] minizip security update

2023-11-27 23:14:37

github

pyminizip affected by zlib's integer overflow/heap based buffer overflow vulnerability due to vulnerable dependency

2023-10-14 03:31:16

Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib

2024-07-16 19:32:45

cvelist

CVE-2023-45853

2023-10-14 00:00:00

gentoo

zlib: Buffer Overflow

2024-01-15 00:00:00

ibm

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in MiniZip (CVE-2023-45853)

2024-01-30 15:24:55

Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to a denial of service due to MiniZip (CVE-2023-45853)

2024-02-27 15:02:47

Security Bulletin: IBM® Db2® is affected by a vulnerability in the open source zlib library. (CVE-2023-45853)

2024-06-11 17:24:52

redhatcve

CVE-2023-45853

2023-10-16 23:57:36

vulnrichment

CVE-2023-45853

2023-10-14 00:00:00

cloudlinux

zlib: Fix of CVE-2023-45853

2023-10-24 20:53:31

cve

CVE-2023-45853

2023-10-14 02:15:09

amazon

Medium: zlib

2023-10-30 23:59:00

prion

Integer overflow

2023-10-14 02:15:00

mageia

Updated zlib packages fix a security vulnerability

2023-11-09 15:55:51

redos

ROS-20231020-01

2023-10-20 00:00:00

photon

Critical Photon OS Security Update - PHSA-2023-3.0-0674

2023-10-26 00:00:00

Critical Photon OS Security Update - PHSA-2023-5.0-0126

2023-10-26 00:00:00

Critical Photon OS Security Update - PHSA-2023-4.0-0497

2023-10-25 00:00:00

rosalinux

Advisory ROSA-SA-2024-2463

2024-08-06 09:33:45

redhat

(RHSA-2023:7626) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP2 security update

2023-12-07 13:53:17

qualysblog

Oracle Critical Patch Update, July 2024 Security Update Review

2024-07-17 14:34:50

oracle

Oracle Critical Patch Update Advisory - July 2024

2024-07-16 00:00:00

ics

Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1

2023-12-14 12:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

High

JSON

Related for OSV:SUSE-SU-2024:2431-1