Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Zipios | Zipios_project | * | 0.1.7 (excluding) |
Flightcrew | Ubuntu | bionic | * |
Flightcrew | Ubuntu | cosmic | * |
Flightcrew | Ubuntu | devel | * |
Flightcrew | Ubuntu | disco | * |
Flightcrew | Ubuntu | trusty | * |
Flightcrew | Ubuntu | upstream | * |
Flightcrew | Ubuntu | xenial | * |
Zipios++ | Ubuntu | bionic | * |
Zipios++ | Ubuntu | cosmic | * |
Zipios++ | Ubuntu | devel | * |
Zipios++ | Ubuntu | disco | * |
Zipios++ | Ubuntu | trusty | * |
Zipios++ | Ubuntu | trusty/esm | * |
Zipios++ | Ubuntu | upstream | * |
Zipios++ | Ubuntu | xenial | * |