VDB

ANCHORE-2016-9842

ANCHORE-2016-9842 PUBLISHED

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.

Affected Products

VendorProductVersions
madlerzlib1.2.3.4, 1.2.3.4, 1.2.3.4
Node.jsNode.js4.0.0, 6.0.0, 7.0.0
Oracle CorporationMySQL Server8, 5.5.0, 5.6.0
Oracle CorporationOpenJDK1.7, 8, 8
Oracle CorporationJava SE6, 1.7, 7

Timeline

  • May 23, 2017 CVE Published
  • Aug 6, 2024 CVE Updated
  • Mar 13, 2026 Distribution Patch
  • Mar 13, 2026 Distribution Patch
  • Mar 13, 2026 Distribution Patch
  • Mar 13, 2026 Distribution Patch
  • Mar 13, 2026 Distribution Patch
  • Mar 13, 2026 Distribution Patch
  • Mar 13, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›