CVE-2026-27171 on CTRL-OS 24.05

Packages: zlib

Status: Plausible

CVE Information

zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.

Updates

2026-04-01 09:59 CEST

Metadata changes:

• Status for package zlib: “Plausible”

2026-04-01 09:44 CEST

Metadata changes:

• Status: Plausible