Description

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

Remediation

References

CVE-2018-25032

Related Vulnerabilities

MyBB Other Vulnerability (CVE-2007-1964)

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-50721)

Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1410)

WordPress Plugin Affiliates Manager Cross-Site Request Forgery (2.6.5)

Joomla Other Vulnerability (CVE-2006-1956)

Severity

High

Classification

CVE-2018-25032 CWE-787 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities