CVE-2019-13453

Name of the Vulnerable Software and Affected Versions Zipios versions prior to 0.1.7

Description The issue is related to the handling of certain malformed zip archives, which can cause the software to go into an infinite loop, resulting in a denial of service. This is associated with the readUint32() function in zipheadio.h and the Zipfile::Zipfile() function in zipfile.cpp.

Recommendations For versions prior to 0.1.7, update to version 0.1.7 or later to resolve the issue. As a temporary workaround, consider restricting the handling of malformed zip archives to minimize the risk of exploitation.