FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a1323a76-28f1-11ed-a72a-002590c1f29cFreeBSD -- zlib heap buffer overflow

Problem Description:

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field.

Impact:

Applications that call inflateGetHeader may be vulnerable to a buffer overflow. Note that inflateGetHeader is not used by anything in the FreeBSD base system, but may be used by third party software.


Discovery 2022-08-30
Entry 2022-08-31
FreeBSD
ge 13.1 lt 13.1_2

ge 13.0 lt 13.0_13

ge 12.3 lt 12.3_7

CVE-2022-37434
SA-22:13.zlib