0.003 Low
EPSS
Percentile
66.4%
zziplib is vulnerable to denial of service (DoS) attacks. The zzip_disk_fread function has an invalid memory address dereference which can cause DoS conditions.
zzip_disk_fread
access.redhat.com/errata/RHSA-2018:3229
github.com/gdraheim/zziplib/blob/0283ed8eeb494d7fc30d019b53e49490b3e8a6d7/zzip/mmapped.c#L611
github.com/gdraheim/zziplib/issues/39
lists.debian.org/debian-lts-announce/2020/06/msg00029.html
usn.ubuntu.com/3699-1/