MGASA-2018-0020

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2018-0020.html
Import Source
https://advisories.mageia.org/MGASA-2018-0020.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2018-0020
Related
Published
2018-01-02T15:02:16Z
Modified
2018-01-02T14:28:39Z
Summary
Updated libzip packages fix security vulnerability
Details

The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service (memory allocation failure in _zipcdirgrow in zipdirent.c) via a crafted ZIP archive (CVE-2017-14107).

References
Credits

Affected packages