OpenSiv3D icon indicating copy to clipboard operation
OpenSiv3D copied to clipboard

Published 20 hours ago • verified publisher icon Siv3D

Fix potential vulnerable cloned function

Open npt-1707 opened this issue 5 months ago • 0 comments

Hi Development Team,

I identified a potential vulnerability in a clone function mz_path_has_slash() in Siv3D/src/ThirdParty/minizip/mz_os.c sourced from zlib-ng/minizip-ng. This issue, originally reported in CVE-2023-48107, was resolved in the repository via this commit https://github.com/zlib-ng/minizip-ng/commit/341760887456e78ed9b86b5b3008c3ddfbd96f97.

This PR applies the corresponding patch to fix the vulnerability in this codebase.

Please review at your convenience. Thank you!

npt-1707 avatar May 20 '25 16:05 npt-1707