Known Vulnerabilities for products from Zlib
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Zlib".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-4176 | Not Provided | 2026-03-29 | 2026-03-30 | |
| CVE-2016-9843 | The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vector... | 9.8 - CRITICAL | 2017-05-23 | 2023-11-07 |
| CVE-2016-9841 | inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer ari... | 9.8 - CRITICAL | 2017-05-23 | 2023-11-07 |
| CVE-2016-9840 | inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer ar... | 8.8 - HIGH | 2017-05-23 | 2023-11-07 |
| CVE-2015-1191 | Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a (1) full ... | 5 - MEDIUM | 2015-01-21 | 2016-12-03 |
| CVE-2013-0296 | Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file'... | 4.4 - MEDIUM | 2014-04-27 | 2014-04-28 |
| CVE-2005-2096 | zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with... | 7.5 - HIGH | 2005-07-06 | 2022-06-22 |
| CVE-2005-1849 | inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of service (application crash) via an invalid file that ca... | 5 - MEDIUM | 2005-07-26 | 2022-06-22 |
| CVE-2004-0797 | The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to c... | 2.1 - LOW | 2004-10-20 | 2022-06-22 |
| CVE-2003-0107 | Buffer overflow in the gzprintf function in zlib 1.1.4, when zlib is compiled without vsnprintf or when long inputs are trunc... | 7.5 - HIGH | 2003-03-07 | 2022-06-22 |
| CVE-2002-0059 | The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to... | 9.8 - CRITICAL | 2002-03-15 | 2024-02-02 |