Design/Logic Flaw

2018-03-0617:29:00

PRIOn knowledge base

www.prio-n.com

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.4%

JSON

An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the __zzip_parse_root_directory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.

CPENameOperatorVersion
ubuntu_linuxeq16.04
ubuntu_linuxeq14.04
ubuntu_linuxeq17.10
ubuntu_linuxeq18.04
enterprise_linux_desktopeq7.0
enterprise_linux_servereq7.0
enterprise_linux_workstationeq7.0
zziplibeq0.13.68

Name	Operator	Version
ubuntu_linux	eq	16.04
ubuntu_linux	eq	14.04
ubuntu_linux	eq	17.10
ubuntu_linux	eq	18.04
enterprise_linux_desktop	eq	7.0
enterprise_linux_server	eq	7.0
enterprise_linux_workstation	eq	7.0
zziplib	eq	0.13.68