Search for packages
Package details: pkg:deb/debian/zlib@1:1.2.11.dfsg-2%2Bdeb11u2
purl pkg:deb/debian/zlib@1:1.2.11.dfsg-2%2Bdeb11u2
Next non-vulnerable version 1:1.3.dfsg+really1.3.1-1
Latest non-vulnerable version 1:1.3.dfsg+really1.3.1-1
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-t9z5-qvz6-aaam
Aliases:
CVE-2023-45853
GHSA-mq29-j5xf-cjwr
MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product.
1:1.2.13.dfsg-3
Affected by 0 other vulnerabilities.
1:1.3.dfsg-3
Affected by 0 other vulnerabilities.
1:1.3.dfsg-3.1
Affected by 0 other vulnerabilities.
1:1.3.dfsg+really1.3.1-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-6ar6-xb8y-aaap zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). CVE-2022-37434
VCID-v5mj-f96s-aaas CVE-2018-25032
GHSA-jc36-42cf-vqwj

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-22T01:35:57.263722+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam None 36.1.3
2025-06-21T05:06:29.932079+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-21T05:02:58.767183+00:00 Debian Oval Importer Fixing VCID-v5mj-f96s-aaas None 36.1.3
2025-06-21T04:34:43.332533+00:00 Debian Oval Importer Fixing VCID-6ar6-xb8y-aaap None 36.1.3
2025-06-08T13:00:07.535644+00:00 Debian Oval Importer Fixing VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:54:43.495610+00:00 Debian Oval Importer Fixing VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-07T22:40:25.211853+00:00 Debian Oval Importer Fixing VCID-v5mj-f96s-aaas None 36.1.0
2025-06-07T22:11:15.670871+00:00 Debian Oval Importer Fixing VCID-6ar6-xb8y-aaap None 36.1.0
2025-04-12T18:47:29.440754+00:00 Debian Oval Importer Fixing VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:41:54.865140+00:00 Debian Oval Importer Fixing VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-07T21:12:08.079235+00:00 Debian Oval Importer Fixing VCID-v5mj-f96s-aaas None 36.0.0
2025-04-07T20:42:44.293762+00:00 Debian Oval Importer Fixing VCID-6ar6-xb8y-aaap None 36.0.0
2025-04-05T20:22:18.323825+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam None 36.0.0
2025-04-04T07:55:54.509572+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-02-21T14:20:00.274947+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam None 35.1.0
2025-02-21T14:19:58.078072+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 35.1.0
2024-11-24T03:26:37.263438+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-10-11T00:51:03.404149+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-09-20T05:21:40.627848+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-04-26T05:48:39.984174+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam None 34.0.0rc4
2024-04-26T05:48:39.073392+00:00 Debian Importer Affected by VCID-t9z5-qvz6-aaam https://security-tracker.debian.org/tracker/data/json 34.0.0rc4