suse · CVE-2018-25032

Quick triage

Priority: high Published: 2022-03-29 01:39:31 UTC Updated: 2026-03-05 06:33:10 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-25032 severity important: SUSE including 511 source package names (0.21.0.1.8.13:libz1-1.2.11-150000.3.30.1, 0.23.0.3.2.201:libz1-1.2.11-150000.3.30.1, …), 1089 product×package rows across 311 product lines (Container bci/bci-init, Container bci/bci-minimal, … (311 product lines)): Fixed 908, Known Affected 181.

Description:

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

cvelogic Threat Intelligence