CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files.

**#259 CVE-2018-1056: heap buffer overflow while running advzip**

Status: closed-fixed

Owner: nobody

Labels: None

Priority: 5

Updated: 2018-02-12

Created: 2018-02-10

Private: No

Hello,

Debian received a bug report about a heap-based buffer overflow in advzip.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889270

The bug reporter also submitted a POC attached to this bug report. This issue has a possible security impact and CVE-2018-1056 was assigned to it.

**Discussion**

*   ![Andrea Mazzoleni](https://secure.gravatar.com/avatar/162819843c0db85a14a7c559d4b509f8?r=pg&d=https%3A%2F%2Fa.fsdn.com%2Fcon%2Fimages%2Fsandiego%2Ficons%2Fdefault-avatar.png&s=48 "Andrea Mazzoleni")
    
    Thanks for the report.
    
    It's fixed in the just released v2.1
    
    Ciao,  
    Andrae
    

*   ![Andrea Mazzoleni](https://secure.gravatar.com/avatar/162819843c0db85a14a7c559d4b509f8?r=pg&d=https%3A%2F%2Fa.fsdn.com%2Fcon%2Fimages%2Fsandiego%2Ficons%2Fdefault-avatar.png&s=48 "Andrea Mazzoleni")
    
    *   **status**: open --> closed-fixed
    

Log in to post a comment.

Headline

CVE-2018-1056: AdvanceMAME / Bugs / #259 CVE-2018-1056: heap buffer overflow while running advzip

CVE: Latest News