MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. https://www.winimage.com/zLibDll/minizip.html https://github.com/madler/zlib/pull/843 https://chromium.googlesource.com/chromium/src/+/d709fb23806858847131027da95ef4c548813356 https://chromium.googlesource.com/chromium/src/+/de29dd6c7151d3cd37cb4cf0036800ddfb1d8b61 https://github.com/madler/zlib/blob/ac8f12c97d1afd9bafa9c710f827d40a407d3266/contrib/README.contrib#L1-L4
Created mingw-zlib tracking bugs for this issue: Affects: fedora-all [bug 2244558] Created zlib tracking bugs for this issue: Affects: fedora-all [bug 2244557]
Created BackupPC-XS tracking bugs for this issue: Affects: epel-all [bug 2244559]
Upstream commit for this issue: https://github.com/madler/zlib/pull/843/commits/431e66398552effd82d5c0ea982a521821782ebd
This issue has been addressed in the following products: Red Hat JBoss Core Services Via RHSA-2023:7626 https://access.redhat.com/errata/RHSA-2023:7626