0.01 Low
EPSS
Percentile
83.8%
zziplib is vulnerable to denial of service (DoS) attacks. These attacks are possible through fseeko.c using a ZIP file to cause a null pointer dereference and crash.
blogs.gentoo.org/ago/2017/02/09/zziplib-null-pointer-dereference-in-prescan_entry-fseeko-c/
github.com/asarubbo/poc/blob/master/00157-zziplib-nullptr-prescan_entry