This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

CVE-2022-37434: zlib vulnerability impact on InstallShield

CVE-2022-37434: zlib vulnerability impact on InstallShield

Summary:

A critical vulnerability (CVSS Score 9.8) is reported in the latest version (1.2.12) of a popular component - zlib (https://github.com/madler/zlib). This article discusses the impact, if any, on InstallShield.

Description: 

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field.  NOTE: only applications that call inflateGetHeader are affected. Upon analysis, neither InstallShield nor other third party components used in InstallShield are calling this method, hence it is not impacted by the vulnerability. 

Resolution: 

No fix is required.

Workaround: 

No workaround is required.

References: 

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434

 

Labels (2)
Was this article helpful? Yes No
0 Kudos
No ratings
Comments
HuanYang
‎Sep 17, 2022 01:05 AM
‎Sep 17, 2022 01:05 AM

What about InstallAnywhere?

Version history
Last update:
‎Aug 23, 2022 10:49 PM
Updated by:
Revenera Community Admin Revenera Community Admin
Contributors