CVE-2019-13232

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-13232
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-13232.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2019-13232
Downstream
Related
Published
2019-07-04T13:15:10.750Z
Modified
2026-02-24T11:31:08.631258Z
Severity
  • 3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Summary
[none]
Details

Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service (resource consumption), aka a "better zip bomb" issue.

References

Affected packages

Git / github.com/checkstyle/checkstyle

Affected ranges

Type
GIT
Repo
https://github.com/checkstyle/checkstyle
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a780f92fe771d1c062408633eb06453e674b2f2e

Affected versions

Other
bcel
release1_1
release1_2
release1_3
release1_4
release2_0
release2_2
release2_4
release3_0
release3_1
release3_2
release3_3
release3_4
release4_0
release4_0_beta_1
release4_0_beta_2
release4_0_beta_3
release4_0_beta_4
release4_0_beta_5
release4_1
release4_2
release4_3
release4_4
release5_3
release5_4
release5_5
release5_6
release5_7
v2-branch_lmp
checkstyle-5.*
checkstyle-5.8
checkstyle-5.9
checkstyle-6.*
checkstyle-6.0

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-13232.json"