Search for packages
Package details: pkg:deb/debian/zlib@1:1.2.8.dfsg-5
purl pkg:deb/debian/zlib@1:1.2.8.dfsg-5
Next non-vulnerable version 1:1.3.dfsg+really1.3.1-1
Latest non-vulnerable version 1:1.3.dfsg+really1.3.1-1
Risk 10.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-6ar6-xb8y-aaap
Aliases:
CVE-2022-37434
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).
1:1.2.11.dfsg-1+deb10u1
Affected by 3 other vulnerabilities.
1:1.2.11.dfsg-2
Affected by 2 other vulnerabilities.
1:1.2.11.dfsg-2+deb11u2
Affected by 1 other vulnerability.
VCID-v5mj-f96s-aaas
Aliases:
CVE-2018-25032
GHSA-jc36-42cf-vqwj
1:1.2.11.dfsg-1+deb10u1
Affected by 3 other vulnerabilities.
1:1.2.11.dfsg-2+deb11u2
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-3dkg-bayv-aaaf The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers. CVE-2016-9842
VCID-44cr-pxwm-aaaq The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation. CVE-2016-9843
VCID-u4ce-pwp5-aaad CVE-2016-9841
VCID-yeuu-f11j-aaar inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic. CVE-2016-9840

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:35:11.734129+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T15:57:13.980789+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:24:12.981726+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:14:02.232113+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:31:16.759859+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:29:07.672600+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:32:24.470867+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T01:20:20.560941+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap None 36.1.3
2025-06-21T00:50:08.935710+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf None 36.1.3
2025-06-20T23:45:24.695829+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas None 36.1.3
2025-06-20T23:35:35.190953+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar None 36.1.3
2025-06-20T23:16:20.949222+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad None 36.1.3
2025-06-20T21:45:05.970984+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq None 36.1.3
2025-06-08T13:00:07.529640+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:54:43.489452+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:05:33.489398+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T08:50:33.637781+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:18:45.933139+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:07:23.105037+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:25:17.267394+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:29:07.230961+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:52:04.265747+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T18:43:07.465495+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap None 36.1.0
2025-06-07T18:12:30.920015+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf None 36.1.0
2025-06-07T17:08:17.295976+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas None 36.1.0
2025-06-07T16:58:32.039811+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar None 36.1.0
2025-06-07T16:39:26.048423+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad None 36.1.0
2025-06-07T15:08:06.400359+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq None 36.1.0
2025-04-12T20:05:25.586514+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:37:47.118629+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:37:39.116685+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:47:29.420425+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:41:54.845302+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:48:52.293807+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T07:22:07.855035+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:50:06.953826+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:40:00.383210+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:57:37.034319+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:00:21.252275+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:23:14.411646+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T17:20:56.017342+00:00 Debian Oval Importer Affected by VCID-6ar6-xb8y-aaap None 36.0.0
2025-04-07T16:49:53.081259+00:00 Debian Oval Importer Fixing VCID-3dkg-bayv-aaaf None 36.0.0
2025-04-07T15:41:49.734550+00:00 Debian Oval Importer Affected by VCID-v5mj-f96s-aaas None 36.0.0
2025-04-07T15:31:39.848781+00:00 Debian Oval Importer Fixing VCID-yeuu-f11j-aaar None 36.0.0
2025-04-07T15:11:43.984739+00:00 Debian Oval Importer Fixing VCID-u4ce-pwp5-aaad None 36.0.0
2025-04-07T13:39:50.561332+00:00 Debian Oval Importer Fixing VCID-44cr-pxwm-aaaq None 36.0.0