Search for packages
| purl | pkg:nuget/epsitec-zlib@1.2.12 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-6ar6-xb8y-aaap
Aliases: CVE-2022-37434 |
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-04-17T17:15:19.152790+00:00 | GitLab Importer | Affected by | VCID-6ar6-xb8y-aaap | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/epsitec-zlib/CVE-2022-37434.yml | 36.0.0 |
| 2024-09-17T22:45:36.529618+00:00 | GitLab Importer | Affected by | VCID-6ar6-xb8y-aaap | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/epsitec-zlib/CVE-2022-37434.yml | 34.0.1 |
| 2024-01-03T18:07:02.416958+00:00 | GitLab Importer | Affected by | VCID-6ar6-xb8y-aaap | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/epsitec-zlib/CVE-2022-37434.yml | 34.0.0rc1 |