CVE-2018-1056
Description
An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.417
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| collection of recompression utilities (USN-3570-1) advancecomp_2.0-1ubuntu0.1_i386.deb | Linux |
| collection of recompression utilities (USN-3570-1) advancecomp_2.0-1ubuntu0.1_amd64.deb | Linux |
| collection of recompression utilities (USN-3570-1) advancecomp_1.18-1ubuntu0.1_i386.deb | Linux |
| collection of recompression utilities (USN-3570-1) advancecomp_1.18-1ubuntu0.1_amd64.deb | Linux |
| collection of recompression utilities (USN-3570-1) advancecomp_1.20-1ubuntu0.1_i386.deb | Linux |
| collection of recompression utilities (USN-3570-1) advancecomp_1.20-1ubuntu0.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234