CVE-2022-37434
zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
5Exploited in Wild
-Decision
Descriptions
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).
zlib versiones hasta 1.2.12, presenta una lectura excesiva de búfer en la región heap de la memoria o desbordamiento de búfer en el archivo inflate.c por medio de un campo extra del encabezado gzip. NOTA: sólo están afectadas las aplicaciones que llaman a inflateGetHeader. Algunas aplicaciones comunes agrupan el código fuente de zlib afectado pero pueden ser incapaces de llamar a inflateGetHeader (por ejemplo, véase la referencia nodejs/node)
A security vulnerability was found in zlib. The flaw triggered a heap-based buffer in inflate in the inflate.c function via a large gzip header extra field. This flaw is only applicable in the call inflateGetHeader.
Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1 serves as a replacement for Red Hat JBoss Core Services Apache HTTP Server 2.4.51, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include buffer over-read, buffer overflow, bypass, code execution, denial of service, double free, integer overflow, out of bounds read, and use-after-free vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-08-05 CVE Reserved
- 2022-08-05 CVE Published
- 2024-10-29 First Exploit
- 2025-02-13 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-787: Out-of-bounds Write
CAPEC
References (29)
| URL | Tag | Source |
|---|---|---|
| http://seclists.org/fulldisclosure/2022/Oct/37 | Mailing List |
|
| http://seclists.org/fulldisclosure/2022/Oct/38 | Mailing List |
|
| http://seclists.org/fulldisclosure/2022/Oct/41 | Mailing List |
|
| http://seclists.org/fulldisclosure/2022/Oct/42 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2022/08/05/2 | Mailing List |
|
| https://lists.debian.org/debian-lts-announce/2022/09/msg00012.html | Mailing List |
|
| https://security.netapp.com/advisory/ntap-20220901-0005 | Third Party Advisory |
|
| https://security.netapp.com/advisory/ntap-20230427-0007 | Third Party Advisory |
|
| https://support.apple.com/kb/HT213488 | Third Party Advisory |
|
| https://support.apple.com/kb/HT213489 | Third Party Advisory |
|
| https://support.apple.com/kb/HT213490 | Third Party Advisory |
|
| https://support.apple.com/kb/HT213491 | Third Party Advisory |
|
| https://support.apple.com/kb/HT213493 | Third Party Advisory |
|
| https://support.apple.com/kb/HT213494 | Third Party Advisory |
|
| URL | Date | SRC |
|---|---|---|
| http://www.openwall.com/lists/oss-security/2022/08/09/1 | 2023-07-19 | |
| https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1 | 2023-07-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Netapp Search vendor "Netapp" | H300s Firmware Search vendor "Netapp" for product "H300s Firmware" | - | - |
Affected
| in | Netapp Search vendor "Netapp" | H300s Search vendor "Netapp" for product "H300s" | - | - |
Safe
|
| Netapp Search vendor "Netapp" | H500s Firmware Search vendor "Netapp" for product "H500s Firmware" | - | - |
Affected
| in | Netapp Search vendor "Netapp" | H500s Search vendor "Netapp" for product "H500s" | - | - |
Safe
|
| Netapp Search vendor "Netapp" | H700s Firmware Search vendor "Netapp" for product "H700s Firmware" | - | - |
Affected
| in | Netapp Search vendor "Netapp" | H700s Search vendor "Netapp" for product "H700s" | - | - |
Safe
|
| Netapp Search vendor "Netapp" | H700s Firmware Search vendor "Netapp" for product "H700s Firmware" | - | - |
Affected
| in | Netapp Search vendor "Netapp" | H700s Search vendor "Netapp" for product "H700s" | - | - |
Safe
|
| Zlib Search vendor "Zlib" | Zlib Search vendor "Zlib" for product "Zlib" | <= 1.2.12 Search vendor "Zlib" for product "Zlib" and version " <= 1.2.12" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 35 Search vendor "Fedoraproject" for product "Fedora" and version "35" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 36 Search vendor "Fedoraproject" for product "Fedora" and version "36" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 37 Search vendor "Fedoraproject" for product "Fedora" and version "37" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 10.0 Search vendor "Debian" for product "Debian Linux" and version "10.0" | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Active Iq Unified Manager Search vendor "Netapp" for product "Active Iq Unified Manager" | - | vmware_vsphere |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Active Iq Unified Manager Search vendor "Netapp" for product "Active Iq Unified Manager" | - | windows |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Hci Search vendor "Netapp" for product "Hci" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Management Services For Element Software Search vendor "Netapp" for product "Management Services For Element Software" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Oncommand Workflow Automation Search vendor "Netapp" for product "Oncommand Workflow Automation" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Ontap Select Deploy Administration Utility Search vendor "Netapp" for product "Ontap Select Deploy Administration Utility" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Storagegrid Search vendor "Netapp" for product "Storagegrid" | - | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | Hci Compute Node Search vendor "Netapp" for product "Hci Compute Node" | - | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Ipados Search vendor "Apple" for product "Ipados" | < 15.7.1 Search vendor "Apple" for product "Ipados" and version " < 15.7.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Iphone Os Search vendor "Apple" for product "Iphone Os" | < 15.7.1 Search vendor "Apple" for product "Iphone Os" and version " < 15.7.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Iphone Os Search vendor "Apple" for product "Iphone Os" | >= 16.0 < 16.1 Search vendor "Apple" for product "Iphone Os" and version " >= 16.0 < 16.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Macos Search vendor "Apple" for product "Macos" | >= 11.0 < 11.7.1 Search vendor "Apple" for product "Macos" and version " >= 11.0 < 11.7.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Macos Search vendor "Apple" for product "Macos" | >= 12.0.0 < 12.6.1 Search vendor "Apple" for product "Macos" and version " >= 12.0.0 < 12.6.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Watchos Search vendor "Apple" for product "Watchos" | < 9.1 Search vendor "Apple" for product "Watchos" and version " < 9.1" | - |
Affected
| ||||||
| Stormshield Search vendor "Stormshield" | Stormshield Network Security Search vendor "Stormshield" for product "Stormshield Network Security" | >= 3.7.31 < 3.7.34 Search vendor "Stormshield" for product "Stormshield Network Security" and version " >= 3.7.31 < 3.7.34" | - |
Affected
| ||||||
| Stormshield Search vendor "Stormshield" | Stormshield Network Security Search vendor "Stormshield" for product "Stormshield Network Security" | >= 3.11.0 < 3.11.22 Search vendor "Stormshield" for product "Stormshield Network Security" and version " >= 3.11.0 < 3.11.22" | - |
Affected
| ||||||
| Stormshield Search vendor "Stormshield" | Stormshield Network Security Search vendor "Stormshield" for product "Stormshield Network Security" | >= 4.3.0 < 4.3.16 Search vendor "Stormshield" for product "Stormshield Network Security" and version " >= 4.3.0 < 4.3.16" | - |
Affected
| ||||||
| Stormshield Search vendor "Stormshield" | Stormshield Network Security Search vendor "Stormshield" for product "Stormshield Network Security" | >= 4.6.0 < 4.6.3 Search vendor "Stormshield" for product "Stormshield Network Security" and version " >= 4.6.0 < 4.6.3" | - |
Affected
| ||||||