CVE-2005-2096 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-2096 Interim 1 9 2023-12-09T02:21:56Z current 2021-05-30T12:32:57Z 2023-12-09T02:21:56Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-2096 zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FZQXW5CEKIZK5GWTS7LHOOXTZRXSTLJL/#FZQXW5CEKIZK5GWTS7LHOOXTZRXSTLJL E-Mail link for SUSE-SA:2005:039 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NJJQFMNJVB6VTNYPMLWQ6MWJSLZ2WMWC/#NJJQFMNJVB6VTNYPMLWQ6MWJSLZ2WMWC E-Mail link for SUSE-SR:2005:017 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed httrack-3.48.22-1.3 httrack-devel-3.48.22-1.3 libhttrack2-3.48.22-1.3 httrack-3.48.22-1.3 as a component of openSUSE Tumbleweed httrack-devel-3.48.22-1.3 as a component of openSUSE Tumbleweed libhttrack2-3.48.22-1.3 as a component of openSUSE Tumbleweed zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file. CVE-2005-2096 openSUSE Tumbleweed:httrack-3.48.22-1.3 openSUSE Tumbleweed:httrack-devel-3.48.22-1.3 openSUSE Tumbleweed:libhttrack2-3.48.22-1.3 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P