CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-5980 – Ubuntu Security Notice USN-3320-1
https://notcve.org/view.php?id=CVE-2017-5980
01 Mar 2017 — The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file. La función zzip_mem_entry_new en memdisk.c en zziplib 0.13.62 permite a atacantes remotos provocar una denegación de servicio (referencia a puntero NULL y caída) a través de un archivo ZIP manipulado. Agostino Sarubbo discovered that zziplib incorrectly handled certain malformed ZIP files. If a user or automated system were tricked ... • http://www.debian.org/security/2017/dsa-3878 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-5981 – Ubuntu Security Notice USN-3320-1
https://notcve.org/view.php?id=CVE-2017-5981
01 Mar 2017 — seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file. seeko.c en zziplib 0.13.62 permite a atacantes remotos provocar una denegación de servicio (fallo de aserción y caída) a través de un archivo ZIP manipulado. Agostino Sarubbo discovered that zziplib incorrectly handled certain malformed ZIP files. If a user or automated system were tricked into opening a specially crafted ZIP file, a remote attacker could cause zziplib to cra... • http://www.debian.org/security/2017/dsa-3878 • CWE-617: Reachable Assertion •