CVE-2005-2096

EPSS 43.0%

zlib - buffer overflow

發布日:2005/7/6修改日:2026/4/28

也稱為:DEBIAN-CVE-2005-2096

描述

zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.

受影響套件(12)

Debian/aidefrom 0, < 0.10-6.1.1
Debian/baculafrom 0, < 1.36.3-2
Debian/dpkgfrom 0, < 1.13.11
Debian/dumpfrom 0, < 0.4b40-1
Debian/libphysfsfrom 0, < 1.0.0-5
Debian/pvpgnfrom 0, < 1.7.8-2
Debian/rpmfrom 0, < 4.0.4-31.1
Debian/sashfrom 0, < 3.7-6
Debian/texmacsfrom 0, < 1:1.0.5-3
Debian/zlibfrom 0, < 1:1.2.2-4.sarge.1
Debian/zlibfrom 0, < 1:1.2.2-7
Debian/zsyncfrom 0, < 0.4.0-2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-2096