oss-sec mailing list archives
more unzip issues
From: Hanno Böck <hanno () hboeck de>
Date: Mon, 3 Nov 2014 12:14:58 +0100
Hi, Surfing the upstream forum I saw that there are two further buffer overflows which didn't get a release yet: http://www.info-zip.org/phpBB3/viewtopic.php?f=7&t=437 http://www.info-zip.org/phpBB3/viewtopic.php?f=7&t=267 (these two seem to refer to the same issue) Also here: https://bugzilla.redhat.com/show_bug.cgi?id=532380 http://bugs.debian.org/744212 And this one: http://www.info-zip.org/phpBB3/viewtopic.php?f=7&t=432 Should they get CVEs? (I was kind of surprised that on my Gentoo system the samples crashed although these issues were several months old) cu, -- Hanno Böck http://hboeck.de/ mail/jabber: hanno () hboeck de GPG: BBB51E42
Attachment:
signature.asc
Description:
Current thread:
- more unzip issues Hanno Böck (Nov 03)
- Re: more unzip issues Alexander Cherepanov (Nov 03)