oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

cve request: miniunzip directory traversal

From: Michael Gilbert <mgilbert () debian org>
Date: Wed, 31 Dec 2014 16:44:42 -0500
Jakub Wilk discovered a directory traversal issue in the miniunzip
tool [0], which is part of minizip [1].  Attached is a proposed
solution.

Please assign a CVE id.

Best wishes,
Mike

[0] http://bugs.debian.org/774321
[1] http://www.winimage.com/zLibDll/minizip.html

Attachment: traversal.patch
Description:

Previous By Date Next
Previous By Thread Next

Current thread: