php-pecl-zip-debuginfo vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the php-pecl-zip-debuginfo package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M CVE-2025-1861	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-1736	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-1734	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-1219	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M Interpretation Conflict	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2024-8929	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M Arbitrary Code Injection	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M Out-of-bounds Write	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-6491	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-1735	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
H CVE-2025-14180	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
M Integer Overflow or Wraparound	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-14177	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2025-1220	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M Out-of-bounds Write	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2024-9026	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
M CVE-2024-8927	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
M HTTP Request Smuggling	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
M Insufficient Verification of Data Authenticity	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
M CVE-2024-3096	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
M CVE-2024-2756	<0:1.22.3-1.module+el8.10.0+1596+477f03f8
H Out-of-Bounds	<0:1.19.2-1.module+el8.10.0+1605+02e07af7
H XML External Entity (XXE) Injection	<0:1.19.2-1.module+el8.10.0+1605+02e07af7
H Use of Insufficiently Random Values	<0:1.19.2-1.module+el8.10.0+1605+02e07af7
H Resource Exhaustion	<0:1.19.2-1.module+el8.10.0+1605+02e07af7
H Allocation of Resources Without Limits or Throttling	<0:1.19.2-1.module+el8.10.0+1605+02e07af7
H Use of Password Hash With Insufficient Computational Effort	<0:1.19.2-1.module+el8.10.0+1605+02e07af7
M Integer Overflow or Wraparound	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2022-31631	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M Out-of-bounds Read	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M CVE-2022-31629	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:1.18.2-1.module+el8.10.0+1604+6558efc7
C Out-of-bounds Write	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Use of Uninitialized Resource	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Access Restriction Bypass	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M Out-of-bounds Read	<0:1.15.3-1.module+el8.4.0+413+c9202dda
M CVE-2020-7066	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Write	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Improper Preservation of Permissions	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M NULL Pointer Dereference	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Uncontrolled Recursion	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M NULL Pointer Dereference	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Use After Free	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Integer Overflow or Wraparound	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Arbitrary Code Injection	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M NULL Pointer Dereference	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Improper Input Validation	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Reliance on Cookies without Validation and Integrity Checking	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Inadequate Encryption Strength	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Use After Free	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Out-of-bounds Read	<0:1.15.4-1.module+el8.4.0+414+2e7afcdd
M Release of Invalid Pointer or Reference	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Improper Input Validation	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Out-of-bounds Write	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Link Following	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M CVE-2021-21707	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Directory Traversal	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M CVE-2020-28949	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Deserialization of Untrusted Data	<0:1.18.2-1.module+el8.4.0+415+e936cba3
M Use After Free	<0:1.19.2-1.module+el8.6.0+790+fc63e43f
H Buffer Overflow	<0:1.18.2-1.module+el8.4.0+415+e936cba3

Vulnerability

Vulnerable Version

CVE-2025-1861

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-1736

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-1734

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-1219

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Interpretation Conflict

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2024-8929

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Arbitrary Code Injection

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Out-of-bounds Write

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-6491

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-1735

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-14180

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

Integer Overflow or Wraparound

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-14177

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2025-1220

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Out-of-bounds Write

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2024-9026

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

CVE-2024-8927

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

HTTP Request Smuggling

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

Insufficient Verification of Data Authenticity

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

CVE-2024-3096

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

CVE-2024-2756

<0:1.22.3-1.module+el8.10.0+1596+477f03f8

Out-of-Bounds

<0:1.19.2-1.module+el8.10.0+1605+02e07af7

XML External Entity (XXE) Injection

<0:1.19.2-1.module+el8.10.0+1605+02e07af7

Use of Insufficiently Random Values

<0:1.19.2-1.module+el8.10.0+1605+02e07af7

Resource Exhaustion

<0:1.19.2-1.module+el8.10.0+1605+02e07af7

Allocation of Resources Without Limits or Throttling

<0:1.19.2-1.module+el8.10.0+1605+02e07af7

Use of Password Hash With Insufficient Computational Effort

<0:1.19.2-1.module+el8.10.0+1605+02e07af7

Integer Overflow or Wraparound

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2022-31631

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Out-of-bounds Read

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

CVE-2022-31629

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Loop with Unreachable Exit Condition ('Infinite Loop')

<0:1.18.2-1.module+el8.10.0+1604+6558efc7

Out-of-bounds Write

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Use of Uninitialized Resource

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Access Restriction Bypass

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

Out-of-bounds Read

<0:1.15.3-1.module+el8.4.0+413+c9202dda

CVE-2020-7066

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Write

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Improper Preservation of Permissions

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

NULL Pointer Dereference

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Uncontrolled Recursion

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

NULL Pointer Dereference

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Use After Free

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Integer Overflow or Wraparound

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Arbitrary Code Injection

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

NULL Pointer Dereference

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Improper Input Validation

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Reliance on Cookies without Validation and Integrity Checking

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Inadequate Encryption Strength

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Use After Free

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Out-of-bounds Read

<0:1.15.4-1.module+el8.4.0+414+2e7afcdd

Release of Invalid Pointer or Reference

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Improper Input Validation

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Out-of-bounds Write

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Link Following

<0:1.18.2-1.module+el8.4.0+415+e936cba3

CVE-2021-21707

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Directory Traversal

<0:1.18.2-1.module+el8.4.0+415+e936cba3

CVE-2020-28949

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Deserialization of Untrusted Data

<0:1.18.2-1.module+el8.4.0+415+e936cba3

Use After Free

<0:1.19.2-1.module+el8.6.0+790+fc63e43f

Buffer Overflow

<0:1.18.2-1.module+el8.4.0+415+e936cba3