CVE-2018-7725

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-7725
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-7725.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2018-7725
Downstream
Related
Published
2018-03-06T17:29:00.480Z
Modified
2025-11-14T08:59:20.872703Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzipdiskfread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service.

References

Affected packages

Git / github.com/gdraheim/zziplib

Affected ranges

Type
GIT
Repo
https://github.com/gdraheim/zziplib
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bf4584fb06d5f9c5813616dbadc0129024c9c0f9

Affected versions

v0.*

v0.13.36
v0.13.48
v0.13.50
v0.13.51
v0.13.52
v0.13.54
v0.13.55
v0.13.56
v0.13.57
v0.13.58
v0.13.59
v0.13.60
v0.13.61
v0.13.62
v0.13.63
v0.13.64
v0.13.65
v0.13.66
v0.13.67
v0.13.68

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-7725.json"