{"affected":[{"ecosystem_specific":{"binaries":[{"libz1":"1.2.13-150500.4.6.1","zlib-devel":"1.2.13-150500.4.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"zlib","purl":"pkg:rpm/suse/zlib&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.13-150500.4.6.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libminizip1":"1.2.13-150500.4.6.1","libz1":"1.2.13-150500.4.6.1","libz1-32bit":"1.2.13-150500.4.6.1","minizip-devel":"1.2.13-150500.4.6.1","zlib-devel":"1.2.13-150500.4.6.1","zlib-devel-static":"1.2.13-150500.4.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"zlib","purl":"pkg:rpm/suse/zlib&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.13-150500.4.6.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"zlib-devel-32bit":"1.2.13-150500.4.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP7","name":"zlib","purl":"pkg:rpm/suse/zlib&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.13-150500.4.6.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libminizip1":"1.2.13-150500.4.6.1","libminizip1-32bit":"1.2.13-150500.4.6.1","libz1":"1.2.13-150500.4.6.1","libz1-32bit":"1.2.13-150500.4.6.1","minizip-devel":"1.2.13-150500.4.6.1","zlib-devel":"1.2.13-150500.4.6.1","zlib-devel-32bit":"1.2.13-150500.4.6.1","zlib-devel-static":"1.2.13-150500.4.6.1","zlib-devel-static-32bit":"1.2.13-150500.4.6.1","zlib-testsuite":"1.2.13-150500.4.6.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"zlib","purl":"pkg:rpm/opensuse/zlib&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.13-150500.4.6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for zlib fixes the following issue:\n\n- CVE-2026-27171: Fixed infinite loop via the `crc32_combine64` and `crc32_combine_gen64` functions due to missing\n  checks for negative lengths (bsc#1258392).\n","id":"SUSE-SU-2026:0783-1","modified":"2026-03-03T13:36:20Z","published":"2026-03-03T13:36:20Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20260783-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258392"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-27171"}],"related":["CVE-2026-27171"],"summary":"Security update for zlib","upstream":["CVE-2026-27171"]}