vulnerability
Red Hat: CVE-2016-9840: zlib: Out-of-bound pointer arithmetic in inftrees.c (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Dec 20, 2016 | May 10, 2017 | Nov 14, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Dec 20, 2016
Added
May 10, 2017
Modified
Nov 14, 2025
Description
A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior.
Solutions
redhat-upgrade-rsyncredhat-upgrade-rsync-daemonredhat-upgrade-rsync-debuginforedhat-upgrade-rsync-debugsource
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.