View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-16548 severity low: SUSE including 25 source package names (libzzip-0-13-0.13.67-10.25.1, libzzip-0-13-0.13.69-3.10.1, …), 46 product×package rows across 21 product lines (SUSE Liberty Linux 7, SUSE Linux Enterprise Desktop 12 SP4, … (21 product lines)): Fixed 46.
An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.