CVE-2019-13232

Published July 4th, 2019

View on NVD ↗

CVSS v3

3.3

LOW

CVSS v2

2.1

LOW

Affected

PROJECT

Description

Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service (resource consumption), aka a "better zip bomb" issue.

madler/unzip

Fork of InfoZIP UnZip 6.0 for new zip bomb detection patch

GitHub