Do your applications use this vulnerable package?
Test your applications
Overview
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
References
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- Apple Security Advisory
- CVE Details
- Debian Security Announcement
- Debian Security Tracker
- GENTOO
- Gentoo Security Advisory
- GitHub Commit
- MISC
- MISC
- MISC
- MLIST
- OSS security Advisory
- OpenSuse Security Update
- OpenSuse Security Update
- OpenSuse Security Update
- Oracle Security Advisory
- Oracle Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RHSA Security Advisory
- RedHat Bugzilla Bug
- Security Focus
- Security Tracker
- UBUNTU
- UBUNTU
- Ubuntu CVE Tracker
CVSS Score
8.8
low severity
-
Attack VectorNetwork
-
Attack ComplexityLow
-
Privileges RequiredNone
-
User InteractionRequired
-
ScopeUnchanged
-
ConfidentialityHigh
-
IntegrityHigh
-
AvailabilityHigh
- CVE
- CVE-2016-9840
- CWE
- CWE-189
- Snyk ID
- SNYK-UBUNTU1604-ZLIB-284706
- Disclosed
- 23 May, 2017
- Published
- 23 May, 2017