vulnerability

Ubuntu: (Multiple Advisories) (CVE-2016-9842): zlib vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	2016-12-20	2020-01-23	2025-05-05

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

2016-12-20

Added

2020-01-23

Modified

2025-05-05

Description

It was discovered that zlib incorrectly handled pointer arithmetic. An attacker
could use this issue to cause zlib to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2016-9840, CVE-2016-9841)

It was discovered that zlib incorrectly handled vectors involving left shifts of
negative integers. An attacker could use this issue to cause zlib to
crash, resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-9842)

It was discovered that zlib incorrectly handled vectors involving big-endian CRC
calculation. An attacker could use this issue to cause zlib to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-9843)

Solution(s)

ubuntu-upgrade-lib32z1ubuntu-upgrade-lib64z1ubuntu-upgrade-libx32z1ubuntu-upgrade-rsyncubuntu-upgrade-zlib1g

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today