Home

SUSE-SU-2017:1095-1(SUSE Linux Enterprise Desktop 12-SP1 ) libzzip-0-13-0.13.62-9.1.x86_64.rpm

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.601%

CVE Information

Source CVE
CVE-2017-5974

Associated CVE
CVE-2017-5974
CVE-2017-5976
CVE-2017-5977
CVE-2017-5975

Patch Details

No records found

References

http://www.debian.org/security/2017/dsa-3878
http://www.openwall.com/lists/oss-security/2017/02/14/3
http://www.securityfocus.com/bid/96268
https://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-zzip_mem_entry_extra_block-memdisk-c/
https://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-__zzip_get32-fetch-c/
https://blogs.gentoo.org/ago/2017/02/09/zziplib-heap-based-buffer-overflow-in-__zzip_get64-fetch-c/
https://blogs.gentoo.org/ago/2017/02/09/zziplib-invalid-memory-read-in-zzip_mem_entry_extra_block-memdisk-c/