Information on source package zlib

Available versions

ReleaseVersion
jessie1:1.2.8.dfsg-2+deb8u3
stretch1:1.2.8.dfsg-5+deb9u2
stretch (security)1:1.2.8.dfsg-5+deb9u1
buster1:1.2.11.dfsg-1+deb10u1
buster (security)1:1.2.11.dfsg-1+deb10u2
bullseye1:1.2.11.dfsg-2+deb11u2
bookworm1:1.2.13.dfsg-1
trixie1:1.3.dfsg-3
sid1:1.3.dfsg-3.1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-45853vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedMiniZip in zlib through 1.3 has an integer overflow and resultant heap ...

Resolved issues

BugDescription
CVE-2022-37434zlib through 1.2.12 has a heap-based buffer over-read or buffer overfl ...
CVE-2018-25032zlib before 1.2.12 allows memory corruption when deflating (i.e., when ...
CVE-2016-9843The crc32_big function in crc32.c in zlib 1.2.8 might allow context-de ...
CVE-2016-9842The inflateMark function in inflate.c in zlib 1.2.8 might allow contex ...
CVE-2016-9841inffast.c in zlib 1.2.8 might allow context-dependent attackers to hav ...
CVE-2016-9840inftrees.c in zlib 1.2.8 might allow context-dependent attackers to ha ...
CVE-2005-2096zlib 1.2 and later versions allows remote attackers to cause a denial ...
CVE-2005-1849inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of ...
CVE-2004-0797The error handling in the (1) inflate and (2) inflateBack functions in ...
CVE-2003-0107Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is c ...

Security announcements

DSA / DLADescription
DLA-3103-1zlib - security update
ELA-677-1zlib - security update
DSA-5218-1zlib - security update
ELA-590-1zlib - security update
DLA-2968-1zlib - security update
DSA-5111-1zlib - security update
ELA-222-1zlib - security update
ELA-212-1zlib - security update
DLA-2085-1zlib - security update
DSA-763-1zlib - buffer overflow
DSA-740-1zlib - buffer overflow
Search for package or bug name: Reporting problems