ZZIPlib through version 0.13.68 is vulnerable to an out of bound read in mapped.c:zzip_disk_fread(). An attacker could exploit this via a crafted zip file, opened with the ZZIPlib mem_disk functionality, causing a denial of service or possibly leaking memory data. Upstream Issue: https://github.com/gdraheim/zziplib/issues/39 Upstream patches: https://github.com/gdraheim/zziplib/commit/1ba660b3300d67b8ce9f6b96bbae0b36fa2d6b06
Created zziplib tracking bugs for this issue: Affects: fedora-all [bug 1554663]
First vulnerable commit: https://github.com/gdraheim/zziplib/commit/596d9dfce2624e849417d4301e8d67935608aa5e
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:3229 https://access.redhat.com/errata/RHSA-2018:3229