CPANSA-Prima-codecs-win64-2002-0059-zlib: Prima-codecs-win64 vulnerability
| Publisher | giterlizzi | Document category | csaf_security_advisory |
|---|---|---|---|
| Initial release date | 2002-03-15T00:00:00 | Engine | CSAF Perl Toolkit 0.25 |
| Current release date | 2002-03-15T00:00:00 | Build Date | |
| Current version | 1 | Status | final |
| CVSS v3.1 Base Score | 9.8 | Severity | |
| Original language | Language | en | |
| Also referred to | |||
Vulnerability Description
The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote attackers to execute arbitrary code via a block of malformed compression data.
Vulnerabilities
CVE-2002-0059
Vulnerability DescriptionThe decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote attackers to execute arbitrary code via a block of malformed compression data.
| Weakness | CWE-415 : Double Free |
|---|
Product status
Known affected
| Product | Score | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Prima-codecs-win64 greater than or equal 1.01 and less than or equal 1.02 |
|
giterlizzi
Namespace: https://github.com/giterlizzi/
gdt@cpan.org
References
- CPANSA-Prima-codecs-win64-2002-0059-zlib JSON self
https://raw.githubusercontent.com/giterlizzi/perl-CPANSA-CSAF/develop/csaf/white/2002/cpansa-prima-codecs-win64-2002-0059-zlib.json - http://www.redhat.com/support/errata/RHSA-2002-026.html external
http://www.redhat.com/support/errata/RHSA-2002-026.html - http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-023.php external
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-023.php - http://www.redhat.com/support/errata/RHSA-2002-027.html external
http://www.redhat.com/support/errata/RHSA-2002-027.html - http://www.cert.org/advisories/CA-2002-07.html external
http://www.cert.org/advisories/CA-2002-07.html - http://www.kb.cert.org/vuls/id/368819 external
http://www.kb.cert.org/vuls/id/368819 - http://www.debian.org/security/2002/dsa-122 external
http://www.debian.org/security/2002/dsa-122 - http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:022 external
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:022 - http://www.caldera.com/support/security/advisories/CSSA-2002-014.1.txt external
http://www.caldera.com/support/security/advisories/CSSA-2002-014.1.txt - ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-015.1.txt external
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-015.1.txt - http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000469 external
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000469 - http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0204-030 external
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0204-030 - http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0204-036 external
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0204-036 - http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0204-037 external
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0204-037 - http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3 external
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-024.php3 - http://www.securityfocus.com/bid/4267 external
http://www.securityfocus.com/bid/4267 - https://exchange.xforce.ibmcloud.com/vulnerabilities/8427 external
https://exchange.xforce.ibmcloud.com/vulnerabilities/8427 - CVE-2002-0059 (NVD) external
https://nvd.nist.gov/vuln/detail/CVE-2002-0059
Revision history
| Version | Date of the revision | Summary of the revision |
|---|---|---|
| 1 | Fri Mar 15 00:00:00 2002 | First release |
Sharing rules
TLP:WHITE
For the TLP version see: https://www.first.org/tlp/