VulnerableCode Package Details - pkg:deb/debian/zlib@1:1.3.dfsg%2Breally1.3.1-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/zlib@1:1.3.dfsg%2Breally1.3.1-1

purl	pkg:deb/debian/zlib@1:1.3.dfsg%2Breally1.3.1-1

Next non-vulnerable version	1:1.3.dfsg+really1.3.2-3
Latest non-vulnerable version	1:1.3.dfsg+really1.3.2-3
Risk	1.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-ac5e-emja-v3fe Aliases: CVE-2026-27171	zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions	1:1.3.dfsg+really1.3.2-3 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-v6pc-48dg-4kad	Integer Overflow or Wraparound MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product.	CVE-2023-45853 GHSA-mq29-j5xf-cjwr

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:54:27.202912+00:00	Debian Importer	Affected by	VCID-ac5e-emja-v3fe	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:02:55.685820+00:00	Debian Importer	Fixing	VCID-v6pc-48dg-4kad	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:07:41.690828+00:00	Debian Importer	Affected by	VCID-ac5e-emja-v3fe	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:03:58.719695+00:00	Debian Importer	Fixing	VCID-v6pc-48dg-4kad	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-08T19:24:49.637888+00:00	Debian Importer	Affected by	VCID-ac5e-emja-v3fe	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-04T17:55:03.956401+00:00	Debian Importer	Fixing	VCID-v6pc-48dg-4kad	https://security-tracker.debian.org/tracker/data/json	38.1.0