Red Hat Security Advisory 2018-3229-01 - The zziplib is a lightweight library to easily extract data from zip files. Issues addressed include a denial of service vulnerability.
16a98e9f6e5fc8cfbe8dbe11e320a186f1573e5605887329c62bca2778feca78
Ubuntu Security Notice 3699-1 - It was discovered that zziplib incorrectly handled certain malformed ZIP files. If a user or automated system were tricked into opening a specially crafted ZIP file, a remote attacker could cause zziplib to crash, resulting in a denial of service, or possibly execute arbitrary code.
a40448bc16ac43a638052eee6a5dcd69e87ec361dd8b7b8565dbf54798c64c4c