{"id":"CVE-2019-13453","details":"Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().","modified":"2026-03-14T09:32:39.517551Z","published":"2019-07-17T15:15:10.673Z","related":["MGASA-2019-0341","openSUSE-SU-2024:13562-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00041.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/109282"},{"type":"FIX","url":"https://salvatoresecurity.com/fun-with-fuzzers-how-i-discovered-three-vulnerabilities-part-2-of-3/"},{"type":"FIX","url":"https://sourceforge.net/p/zipios/news/2019/07/version-017-cve-/"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-13453.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"0.1.7"}]},{"events":[{"introduced":"0"},{"fixed":"0.1.7"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}