oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE-2015-1845, CVE-2015-1846 - unzoo - Buffer overflow & Infinite loop

From: William Robinet <william.robinet () conostix com>
Date: Wed, 1 Apr 2015 10:34:19 +0200
Dear oss-security list,

Two issues have been fixed in the "unzoo" package from Fedora EPEL.

CVE-2015-1845 unzoo:
    Buffer overflow in EntrReadArch()
    https://bugzilla.redhat.com/show_bug.cgi?id=1207645

CVE-2015-1846 unzoo:
    Infinite loop due to incorrect pointers handling in ExtrArch()/ListArch()
    https://bugzilla.redhat.com/show_bug.cgi?id=1207647


William
(Please note I'm not a member of the list)

-- 
GPG Key ID/Fingerprint:
    74C7A949/B509 4137 1353 A3FC 6A87  AA06 003F A3DF 74C7 A949

Conostix S.A.
4, Rue d'Arlon
L-8399 Windhof (Koerich)
T. +352 26 10 30 61
F. +352 26 10 30 62
Previous By Date Next
Previous By Thread Next

Current thread: