HCE3-SA-2025-0182 Important HCE 3.0 Security Fix(es): A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the __zzip_fetch_disk_trailer() function at /zzip/zip.c. (CVE-2024-39134) Infinite Loop in zziplib v0.13.69 allows remote attackers to cause a denial of service via the return value "zzip_file_read" in the function "unzzip_cat_file". (CVE-2020-18442) Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file. (CVE-2018-17828) An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack. (CVE-2018-16548) HCE 3.0 zziplib-0.13.72-4.hce3.x86_64.rpm zziplib-devel-0.13.72-4.hce3.x86_64.rpm zziplib-help-0.13.72-4.hce3.noarch.rpm zziplib-0.13.72-4.hce3.aarch64.rpm zziplib-devel-0.13.72-4.hce3.aarch64.rpm