Tag
zlib
Safeguard articles tagged "zlib" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Vulnerability Analysis
zlib heap buffer overflow via crafted input (CVE-2022-37434)
CVE-2022-37434: a heap buffer overflow in zlib's gzip header parsing. Affected versions, CVSS/EPSS/KEV context, timeline, and how to remediate it.
Jan 7, 20268 min read
Software Supply Chain Security
Compression Library Vulnerabilities: From zlib to the xz Backdoor
Compression libraries are everywhere and trusted implicitly. The xz backdoor proved that trust can be weaponized. Here is the full picture.
Sep 22, 20226 min read