漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Memory corruption issues is Cloudflare zlib implementation
Vulnerability Description
Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation (deflate.c). The issues resulted from improper input validation and heap-based buffer overflow. A local attacker could exploit the problem during compression using a crafted malicious file potentially leading to denial of service of the software. Patches: The issue has been patched in commit 8352d10 https://github.com/cloudflare/zlib/commit/8352d108c05db1bdc5ac3bdf834dad641694c13c . The upstream repository is not affected.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
Vulnerability Type
输入验证不恰当
Vulnerability Title
zlib 安全漏洞
Vulnerability Description
zlib是美国Mark Adler个人开发者的一个通用的数据压缩库。 zlib存在安全漏洞,该漏洞源于存在缓冲区溢出漏洞,导致deflate.c出现内存损坏。
CVSS Information
N/A
Vulnerability Type
N/A