pkg:Debian/p7zip

All known vulnerabilities

• HIGH8.8CVE-2016-2335p7zip - security update
  from 0, < 9.20.1~dfsg.1-4+deb7u2
• HIGH8.8CVE-2016-2335p7zip - security update
  from 0, < 15.14.1+dfsg-2
• HIGH8.8CVE-2016-2335p7zip - security update
  from 0, < 9.20.1~dfsg.1-4.1+deb8u2
• HIGH8.4CVE-2023-52168The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) contains a heap-based buffer overflow that allows an attacker to overwrite…
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH8.2CVE-2023-52169The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) contains an out-of-bounds read that allows an attacker to read beyond the…
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.8CVE-2025-110027-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.8CVE-2025-110017-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.8CVE-2023-404817-Zip SquashFS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.8CVE-2023-31102Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.8CVE-2022-47069p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerability via the function NArchive::NZip::CInArchive::FindCd(bool) at CPP…
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.8CVE-2017-17969p7zip - security update
  from 0, < 9.20.1~dfsg.1-4+deb7u3
• HIGH7.8CVE-2017-17969p7zip - security update
  from 0, < 16.02+dfsg-5
• HIGH7.8CVE-2017-17969p7zip - security update
  from 0, < 9.20.1~dfsg.1-4.1+deb8u3
• HIGH7.8CVE-2016-2334Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers t…
  from 0, < 15.14.1+dfsg-2
• HIGH7.5CVE-2025-538177-Zip is a file archiver with a high compression ratio.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• HIGH7.5CVE-2016-9296A null pointer dereference bug affects the 16.02 and many old versions of p7zip.
  from 0, < 16.02+dfsg-2
• MEDIUM6.5CVE-2024-116127-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• LOW3.6CVE-2025-551887-Zip before 25.01 does not always properly handle symbolic links during extraction.
  from 0, < 16.02+really25.01+dfsg-0+deb11u1
• LOW3.3CVE-2022-471127-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits.
  from 0
• LOW3.3CVE-2022-471117-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits.
  from 0
• —CVE-2026-48111(no summary)
  from 0
• —CVE-2026-48103(no summary)
  from 0
• —CVE-2026-48112(no summary)
  from 0
• —CVE-2026-48104(no summary)
  from 0
• —CVE-2026-48101(no summary)
  from 0
• —CVE-2026-48102(no summary)
  from 0
• —CVE-2026-48092(no summary)
  from 0
• —CVE-2026-48095(no summary)
  from 0
• —CVE-2015-1038p7zip - security update
  from 0, < 9.04~dfsg.1-1+deb6u1
• —CVE-2015-1038p7zip - security update
  from 0, < 9.20.1~dfsg.1-4+deb7u1
• —CVE-2015-1038p7zip - security update
  from 0, < 9.20.1~dfsg.1-4.2
• —CVE-2008-6536Unspecified vulnerability in 7-zip before 4.5.7 has unknown impact and remote attack vectors, as demonstrated by the PROTOS GENOME test sui…
  from 0, < 4.57~dfsg.1-1