VulnerableCode Package Details - pkg:deb/debian/zlib@1:1.2.11.dfsg-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-xd6j-x83x-r3gn Aliases: CVE-2018-25032 GHSA-jc36-42cf-vqwj	Out-of-bounds Write zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.	1:1.2.11.dfsg-1+deb10u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1:1.2.11.dfsg-2+deb11u2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ys8b-uuv1-pkfm Aliases: CVE-2022-37434	A buffer overflow in zlib might allow an attacker to cause remote code execution.	1:1.2.11.dfsg-2+deb11u2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-xd6j-x83x-r3gn
Aliases:
CVE-2018-25032
GHSA-jc36-42cf-vqwj

Out-of-bounds Write zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

1:1.2.11.dfsg-1+deb10u1
Affected by 2 other vulnerabilities.

1:1.2.11.dfsg-2+deb11u2
Affected by 2 other vulnerabilities.

VCID-ys8b-uuv1-pkfm
Aliases:
CVE-2022-37434

A buffer overflow in zlib might allow an attacker to cause remote code execution.

1:1.2.11.dfsg-2+deb11u2
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T19:04:05.305072+00:00	Debian Oval Importer	Affected by	VCID-ys8b-uuv1-pkfm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:55:51.163984+00:00	Debian Oval Importer	Affected by	VCID-xd6j-x83x-r3gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:42:21.032273+00:00	Debian Oval Importer	Affected by	VCID-xd6j-x83x-r3gn	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-11T18:48:03.536851+00:00	Debian Oval Importer	Affected by	VCID-ys8b-uuv1-pkfm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:40:07.251589+00:00	Debian Oval Importer	Affected by	VCID-xd6j-x83x-r3gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:30:39.979679+00:00	Debian Oval Importer	Affected by	VCID-xd6j-x83x-r3gn	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-08T18:33:01.245712+00:00	Debian Oval Importer	Affected by	VCID-ys8b-uuv1-pkfm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:25:17.348701+00:00	Debian Oval Importer	Affected by	VCID-xd6j-x83x-r3gn	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:03:59.996668+00:00	Debian Oval Importer	Affected by	VCID-xd6j-x83x-r3gn	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0