vulnerability
Amazon Linux 2023: CVE-2024-39133: Medium priority package update for zziplib
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:N/I:N/A:C) | Jun 27, 2024 | Feb 26, 2025 | Jul 8, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:N/I:N/A:C)
Published
Jun 27, 2024
Added
Feb 26, 2025
Modified
Jul 8, 2025
Description
Heap Buffer Overflow vulnerability in zziplib v0.13.77 allows attackers to cause a denial of service via the __zzip_parse_root_directory() function at /zzip/zip.c.
A heap buffer overflow vulnerability was found in zziplib. This flaw allows attackers to cause a denial of service via the __zzip_parse_root_directory() function at /zzip/zip.c.
A heap buffer overflow vulnerability was found in zziplib. This flaw allows attackers to cause a denial of service via the __zzip_parse_root_directory() function at /zzip/zip.c.
Solutions
amazon-linux-2023-upgrade-zziplibamazon-linux-2023-upgrade-zziplib-debuginfoamazon-linux-2023-upgrade-zziplib-debugsourceamazon-linux-2023-upgrade-zziplib-develamazon-linux-2023-upgrade-zziplib-utilsamazon-linux-2023-upgrade-zziplib-utils-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.