CVE-2022-37434 – zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inf …

5 August 2022

Vuln ID: CVE-2022-37434

Published: 2022-08-05 07:15:07Z

Description: zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference).

Source: NVD.NIST.GOV

Date:

5 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Russian APT28 Group in New “GooseEgg” Hacking Campaign23 April 2024
The multitenant dilemma: Gaining more control over user access without compromising data isolation23 April 2024
Hacker Offers Upto $300 To Mobile Networks Staff For Illegal SIM Swaps23 April 2024
Critical Apache HugeGraph Flaw Let Attackers Execute Remote Code23 April 2024
Over a million Neighbourhood Watch members exposed through web app bug23 April 2024