Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/zlib@1:1.2.11.dfsg-2%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/zlib@1:1.2.11.dfsg-2%2Bdeb11u2?distro=trixie
Next non-vulnerable version 1:1.2.11.dfsg-4
Latest non-vulnerable version 1:1.3.dfsg+really1.3.2-3
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-ac5e-emja-v3fe
Aliases:
CVE-2026-27171
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
1:1.3.dfsg+really1.3.2-1
Affected by 0 other vulnerabilities.
1:1.3.dfsg+really1.3.2-3
Affected by 0 other vulnerabilities.
VCID-v6pc-48dg-4kad
Aliases:
CVE-2023-45853
GHSA-mq29-j5xf-cjwr
Integer Overflow or Wraparound MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product.
1:1.3.dfsg-2
Affected by 0 other vulnerabilities.
1:1.3.dfsg+really1.3.1-1
Affected by 1 other vulnerability.
1:1.3.dfsg+really1.3.1-3
Affected by 1 other vulnerability.
1:1.3.dfsg+really1.3.2-3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (11)
Vulnerability Summary Aliases
VCID-1vu9-xzw9-kfe2 zlib DoS CVE-2005-2096
VCID-3aq8-fkrc-hqa2 zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility CVE-2026-22184
VCID-eyjp-7kks-jbfr Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. CVE-2016-9841
VCID-m6xx-a91r-sbhu Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. CVE-2016-9842
VCID-mr6h-6jrp-gyf3 Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. CVE-2016-9840
VCID-s8dx-tft2-nfg6 The zlib library contains a Denial of Service vulnerability. CVE-2004-0797
VCID-smft-ms93-6kf1 Multiple vulnerabilities have been found in rsync, the worst of which could result in a Denial of Service condition. CVE-2016-9843
VCID-sn99-6y6w-ybc6 Pngcrush is vulnerable to a buffer overflow which could potentially lead to the execution of arbitrary code. CVE-2005-1849
VCID-xd6j-x83x-r3gn Out-of-bounds Write zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. CVE-2018-25032
GHSA-jc36-42cf-vqwj
VCID-y9kk-6zyw-6qfn security flaw CVE-2003-0107
VCID-ys8b-uuv1-pkfm A buffer overflow in zlib might allow an attacker to cause remote code execution. CVE-2022-37434

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:13:17.930461+00:00 Debian Importer Fixing VCID-m6xx-a91r-sbhu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:18:18.671064+00:00 Debian Importer Fixing VCID-sn99-6y6w-ybc6 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:23:06.881064+00:00 Debian Importer Fixing VCID-xd6j-x83x-r3gn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:12:23.075882+00:00 Debian Importer Fixing VCID-smft-ms93-6kf1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:50:15.862992+00:00 Debian Importer Fixing VCID-ys8b-uuv1-pkfm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:42:30.465952+00:00 Debian Importer Fixing VCID-3aq8-fkrc-hqa2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:13:56.548289+00:00 Debian Importer Fixing VCID-s8dx-tft2-nfg6 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:54:27.831849+00:00 Debian Importer Fixing VCID-mr6h-6jrp-gyf3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:45:26.832369+00:00 Debian Importer Fixing VCID-y9kk-6zyw-6qfn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:13:14.840763+00:00 Debian Importer Fixing VCID-1vu9-xzw9-kfe2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:01:49.110922+00:00 Debian Importer Fixing VCID-eyjp-7kks-jbfr https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:06:04.529141+00:00 Debian Importer Fixing VCID-m6xx-a91r-sbhu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:24:57.944968+00:00 Debian Importer Fixing VCID-sn99-6y6w-ybc6 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:45:12.573878+00:00 Debian Importer Fixing VCID-xd6j-x83x-r3gn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:37:05.610460+00:00 Debian Importer Fixing VCID-smft-ms93-6kf1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:20:13.787090+00:00 Debian Importer Fixing VCID-ys8b-uuv1-pkfm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:14:34.652426+00:00 Debian Importer Fixing VCID-3aq8-fkrc-hqa2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:52:48.322607+00:00 Debian Importer Fixing VCID-s8dx-tft2-nfg6 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:37:47.354045+00:00 Debian Importer Fixing VCID-mr6h-6jrp-gyf3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:30:46.688254+00:00 Debian Importer Fixing VCID-y9kk-6zyw-6qfn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:10:07.058619+00:00 Debian Importer Fixing VCID-1vu9-xzw9-kfe2 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:03:16.906413+00:00 Debian Importer Fixing VCID-eyjp-7kks-jbfr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:59:14.951491+00:00 Debian Importer Affected by VCID-ac5e-emja-v3fe https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.914341+00:00 Debian Importer Fixing VCID-3aq8-fkrc-hqa2 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.836445+00:00 Debian Importer Affected by VCID-v6pc-48dg-4kad https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.795236+00:00 Debian Importer Fixing VCID-ys8b-uuv1-pkfm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.729480+00:00 Debian Importer Fixing VCID-xd6j-x83x-r3gn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.672838+00:00 Debian Importer Fixing VCID-smft-ms93-6kf1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.616472+00:00 Debian Importer Fixing VCID-m6xx-a91r-sbhu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.559280+00:00 Debian Importer Fixing VCID-eyjp-7kks-jbfr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.501372+00:00 Debian Importer Fixing VCID-mr6h-6jrp-gyf3 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.442987+00:00 Debian Importer Fixing VCID-1vu9-xzw9-kfe2 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.386678+00:00 Debian Importer Fixing VCID-sn99-6y6w-ybc6 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.338544+00:00 Debian Importer Fixing VCID-s8dx-tft2-nfg6 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:59:14.286826+00:00 Debian Importer Fixing VCID-y9kk-6zyw-6qfn https://security-tracker.debian.org/tracker/data/json 38.1.0