Search for packages
| purl | pkg:deb/debian/zlib@1:1.2.11.dfsg-1%2Bdeb10u1 |
| Next non-vulnerable version | 1:1.3.dfsg+really1.3.1-1 |
| Latest non-vulnerable version | 1:1.3.dfsg+really1.3.1-1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-6ar6-xb8y-aaap
Aliases: CVE-2022-37434 |
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). |
Affected by 2 other vulnerabilities. Affected by 1 other vulnerability. |
|
VCID-t9z5-qvz6-aaam
Aliases: CVE-2023-45853 GHSA-mq29-j5xf-cjwr |
MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-v5mj-f96s-aaas
Aliases: CVE-2018-25032 GHSA-jc36-42cf-vqwj |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-6ar6-xb8y-aaap | zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). |
CVE-2022-37434
|
| VCID-v5mj-f96s-aaas |
CVE-2018-25032
GHSA-jc36-42cf-vqwj |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-22T01:35:57.258247+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | None | 36.1.3 |
| 2025-06-21T19:09:31.716352+00:00 | Debian Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 36.1.3 |
| 2025-06-21T15:24:12.985286+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:32:24.474719+00:00 | Debian Oval Importer | Fixing | VCID-v5mj-f96s-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T06:27:41.521637+00:00 | Debian Importer | Fixing | VCID-6ar6-xb8y-aaap | None | 36.1.3 |
| 2025-06-21T05:06:29.925670+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T05:02:58.763187+00:00 | Debian Oval Importer | Affected by | VCID-v5mj-f96s-aaas | None | 36.1.3 |
| 2025-06-21T01:20:20.564630+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 36.1.3 |
| 2025-06-20T23:45:24.700353+00:00 | Debian Oval Importer | Fixing | VCID-v5mj-f96s-aaas | None | 36.1.3 |
| 2025-06-08T13:00:07.532648+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:54:43.492588+00:00 | Debian Oval Importer | Affected by | VCID-v5mj-f96s-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T08:18:45.936173+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:52:04.270501+00:00 | Debian Oval Importer | Fixing | VCID-v5mj-f96s-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T22:40:25.208545+00:00 | Debian Oval Importer | Affected by | VCID-v5mj-f96s-aaas | None | 36.1.0 |
| 2025-06-07T18:43:07.468564+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 36.1.0 |
| 2025-06-07T17:08:17.299200+00:00 | Debian Oval Importer | Fixing | VCID-v5mj-f96s-aaas | None | 36.1.0 |
| 2025-04-12T18:47:29.430485+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:41:54.855246+00:00 | Debian Oval Importer | Affected by | VCID-v5mj-f96s-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T06:50:06.963748+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:23:14.421434+00:00 | Debian Oval Importer | Fixing | VCID-v5mj-f96s-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T21:12:08.068209+00:00 | Debian Oval Importer | Affected by | VCID-v5mj-f96s-aaas | None | 36.0.0 |
| 2025-04-07T17:20:56.027130+00:00 | Debian Oval Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 36.0.0 |
| 2025-04-07T15:41:49.745379+00:00 | Debian Oval Importer | Fixing | VCID-v5mj-f96s-aaas | None | 36.0.0 |
| 2025-04-05T20:22:18.310305+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | None | 36.0.0 |
| 2025-04-05T15:19:32.780623+00:00 | Debian Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 36.0.0 |
| 2025-04-05T03:42:44.645843+00:00 | Debian Importer | Fixing | VCID-6ar6-xb8y-aaap | None | 36.0.0 |
| 2025-04-04T07:55:54.495768+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-02-21T14:20:00.261667+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | None | 35.1.0 |
| 2025-02-21T14:19:58.064439+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T01:25:52.348892+00:00 | Debian Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 35.1.0 |
| 2025-02-21T01:25:47.604265+00:00 | Debian Importer | Fixing | VCID-6ar6-xb8y-aaap | None | 35.1.0 |
| 2024-04-26T05:48:39.971638+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | None | 34.0.0rc4 |
| 2024-04-26T05:48:39.058877+00:00 | Debian Importer | Affected by | VCID-t9z5-qvz6-aaam | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-25T19:12:24.667695+00:00 | Debian Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 34.0.0rc4 |
| 2024-04-25T19:12:12.834829+00:00 | Debian Importer | Fixing | VCID-6ar6-xb8y-aaap | None | 34.0.0rc4 |
| 2024-01-12T00:54:25.808841+00:00 | Debian Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 34.0.0rc2 |
| 2024-01-12T00:54:22.132617+00:00 | Debian Importer | Fixing | VCID-6ar6-xb8y-aaap | None | 34.0.0rc2 |
| 2024-01-05T04:23:40.390859+00:00 | Debian Importer | Affected by | VCID-6ar6-xb8y-aaap | None | 34.0.0rc1 |
| 2024-01-05T04:23:37.665426+00:00 | Debian Importer | Fixing | VCID-6ar6-xb8y-aaap | None | 34.0.0rc1 |