« List of all CVEs

CVE-2005-2096

Published: 7/6/2005 Last updated: 8/7/2024 Reserved: 6/30/2005

zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (13)

bap-std camlzip conf-gd conf-libclang conf-libdw conf-llvm conf-llvm-shared conf-llvm-static conf-mingw-w64-zlib-i686 conf-mingw-w64-zlib-x86_64 conf-taglib conf-zlib kafka

Products affected (2)

Product Vendor Version
n/a n/a < f76b3a32879de215ced3f8c754c4077b0c2f79e3
n/a n/a 3.1.6

References (228)