CVE-2012-1162

Name of the Vulnerable Software and Affected Versions libzip versions prior to 0.10.1

Description The issue is related to a heap-based buffer overflow in the zip readcdir function in zip open.c in libzip, which can be triggered by a zip archive with the number of directories set to 0. This is due to an incorrect loop construct. The exploitation of this issue may lead to a denial of service (application crash) and possibly the execution of arbitrary code. Additionally, multiple vulnerabilities in libzip prior to version 0.10.1 may compromise the confidentiality, integrity, and availability of protected information, and can be exploited remotely.

Recommendations For libzip versions prior to 0.10.1, update to version 0.10.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of zip archives with suspicious directory settings to minimize the risk of exploitation. Avoid using the zip open function with untrusted zip archives until the issue is resolved.