Dmcox

**Name of the Vulnerable Software and Affected Versions** ZZIPlib Library versions prior to 0.13.49 **Description** The issue is a stack-based buffer overflow in the `zzip open shared io` function, located in `zzip/file.c`. This allows user-assisted remote attackers to potentially cause a denial of service, resulting in an application crash, or execute arbitrary code via a long filename. **Recommendations** For versions prior to 0.13.49, update to version 0.13.49 or later to resolve the issue. As a temporary workaround, consider restricting the use of long filenames to minimize the risk of exploitation.