Search for packages
Package details: pkg:deb/debian/zlib@1:1.2.3-13
purl pkg:deb/debian/zlib@1:1.2.3-13
Next non-vulnerable version 1:1.3.dfsg+really1.3.1-1
Latest non-vulnerable version 1:1.3.dfsg+really1.3.1-1
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-3dkg-bayv-aaaf
Aliases:
CVE-2016-9842
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
1:1.2.8.dfsg-5
Affected by 2 other vulnerabilities.
VCID-44cr-pxwm-aaaq
Aliases:
CVE-2016-9843
The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.
1:1.2.8.dfsg-5
Affected by 2 other vulnerabilities.
VCID-6ar6-xb8y-aaap
Aliases:
CVE-2022-37434
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).
1:1.2.11.dfsg-1+deb10u1
Affected by 3 other vulnerabilities.
1:1.2.11.dfsg-2
Affected by 2 other vulnerabilities.
1:1.2.11.dfsg-2+deb11u2
Affected by 1 other vulnerability.
VCID-u4ce-pwp5-aaad
Aliases:
CVE-2016-9841
1:1.2.8.dfsg-5
Affected by 2 other vulnerabilities.
VCID-v5mj-f96s-aaas
Aliases:
CVE-2018-25032
GHSA-jc36-42cf-vqwj
1:1.2.11.dfsg-1+deb10u1
Affected by 3 other vulnerabilities.
1:1.2.11.dfsg-2+deb11u2
Affected by 1 other vulnerability.
VCID-yeuu-f11j-aaar
Aliases:
CVE-2016-9840
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
1:1.2.8.dfsg-5
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-un1q-y2x6-aaas zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file. CVE-2005-2096
VCID-vzym-p24v-aaaa inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of service (application crash) via an invalid file that causes a large dynamic tree to be produced. CVE-2005-1849

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:35:11.722821+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T15:57:13.970987+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:24:12.972747+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:49:39.493196+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:14:02.221395+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:31:16.749398+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:25:33.732440+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:29:07.661597+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:32:24.461289+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T01:20:20.551074+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap None 36.1.3
2025-06-21T00:50:08.925724+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf None 36.1.3
2025-06-21T00:04:15.096079+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa None 36.1.3
2025-06-20T23:45:24.684730+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas None 36.1.3
2025-06-20T23:35:35.180546+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar None 36.1.3
2025-06-20T23:19:07.259342+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas None 36.1.3
2025-06-20T23:16:20.939506+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad None 36.1.3
2025-06-20T21:45:05.960390+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq None 36.1.3
2025-06-08T13:00:07.522024+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:54:43.480738+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:05:33.480293+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T08:50:33.628827+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:18:45.925626+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:43:02.161071+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:07:23.097087+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:25:17.259875+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:19:38.399706+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:29:07.221897+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:52:04.258202+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T18:43:07.457517+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap None 36.1.0
2025-06-07T18:12:30.912430+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf None 36.1.0
2025-06-07T17:27:03.065040+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa None 36.1.0
2025-06-07T17:08:17.288589+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas None 36.1.0
2025-06-07T16:58:32.031184+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar None 36.1.0
2025-06-07T16:42:06.347287+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas None 36.1.0
2025-06-07T16:39:26.040971+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad None 36.1.0
2025-06-07T15:08:06.392911+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq None 36.1.0
2025-04-12T20:12:50.814844+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:05:25.557330+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:00:35.837772+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:37:47.093813+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:37:39.091192+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:47:29.395263+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:41:54.820676+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:48:52.259686+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T07:22:07.829991+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:50:06.928837+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:15:31.190145+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:40:00.357594+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:57:37.008829+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:51:56.828020+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:00:21.227996+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:23:14.387329+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T17:20:55.990593+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap None 36.0.0
2025-04-07T16:49:53.054697+00:00 Debian Oval Importer Affected by VCID-3dkg-bayv-aaaf None 36.0.0
2025-04-07T16:01:25.931511+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa None 36.0.0
2025-04-07T15:41:49.707440+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas None 36.0.0
2025-04-07T15:31:39.821917+00:00 Debian Oval Importer Affected by VCID-yeuu-f11j-aaar None 36.0.0
2025-04-07T15:14:32.191295+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas None 36.0.0
2025-04-07T15:11:43.957175+00:00 Debian Oval Importer Affected by VCID-u4ce-pwp5-aaad None 36.0.0
2025-04-07T13:39:50.528248+00:00 Debian Oval Importer Affected by VCID-44cr-pxwm-aaaq None 36.0.0
2024-11-25T08:56:32.287426+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-25T08:26:49.155478+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-11T20:45:21.975532+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-11T20:25:26.302410+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-20T11:02:05.902503+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T10:58:05.778807+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-02-02T21:05:23.605689+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc2
2024-02-02T21:05:16.602439+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 34.0.0rc2
2024-02-02T17:12:58.589905+00:00 Debian Oval Importer Fixing VCID-un1q-y2x6-aaas None 34.0.0rc2
2024-02-02T06:12:34.414058+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc2
2024-02-02T06:12:32.813614+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 34.0.0rc2
2024-02-02T04:39:15.819021+00:00 Debian Oval Importer Fixing VCID-vzym-p24v-aaaa None 34.0.0rc2