Publishing details

• Published on 2018-07-03
• Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

zziplib (0.13.62-3ubuntu0.16.04.2) xenial-security; urgency=medium

  * SECURITY UPDATE: invalid mem access in zzip_disk_fread
    - debian/patches/CVE-2018-6381.patch: check sizes in zzip/memdisk.c.
    - CVE-2018-6381
  * SECURITY UPDATE: alignment and bus errors in __zzip_fetch_disk_trailer
    - debian/patches/CVE-2018-6484.patch: check sizes in zzip/zip.c.
    - CVE-2018-6484
    - CVE-2018-6541
    - CVE-2018-6869
  * SECURITY UPDATE: bus error in zzip_disk_findfirst
    - debian/patches/CVE-2018-6540.patch: check endbuf in zzip/mmapped.c.
    - CVE-2018-6540
  * SECURITY UPDATE: invalid memory dereference
    - debian/patches/CVE-2018-7725.patch: check zlib space in
      zzip/memdisk.c, zzip/mmapped.c.
    - CVE-2018-7725
  * SECURITY UPDATE: bus error in __zzip_parse_root_directory
    - debian/patches/CVE-2018-7726-1.patch: check rootseek and rootsize in
      zzip/zip.c.
    - debian/patches/CVE-2018-7726-2.patch: check rootseek in zzip/zip.c.
    - debian/patches/CVE-2018-7726-3.patch: check zz_rootsize in
      zzip/zip.c.
    - CVE-2018-7726

 -- Marc Deslauriers <email address hidden>  Fri, 29 Jun 2018 12:27:57 -0400

Builds

• amd64
• arm64
• armhf
• i386
• powerpc
• ppc64el
• s390x

Built packages

• libzzip-0-13 library providing read access on ZIP-archives - library

• libzzip-dev library providing read access on ZIP-archives - development

• zziplib-bin library providing read access on ZIP-archives - binaries

Package files

• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_amd64.deb (25.5 KiB)
• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_arm64.deb (22.2 KiB)
• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_armhf.deb (21.8 KiB)
• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_i386.deb (27.2 KiB)
• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_powerpc.deb (23.7 KiB)
• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_ppc64el.deb (24.3 KiB)
• libzzip-0-13_0.13.62-3ubuntu0.16.04.2_s390x.deb (24.8 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_amd64.deb (78.9 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_arm64.deb (76.7 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_armhf.deb (75.4 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_i386.deb (79.6 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_powerpc.deb (77.0 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_ppc64el.deb (81.1 KiB)
• libzzip-dev_0.13.62-3ubuntu0.16.04.2_s390x.deb (78.9 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_amd64.deb (10.3 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_arm64.deb (10.3 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_armhf.deb (10.3 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_i386.deb (10.0 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_powerpc.deb (10.1 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_ppc64el.deb (11.0 KiB)
• zziplib-bin_0.13.62-3ubuntu0.16.04.2_s390x.deb (10.5 KiB)
• zziplib_0.13.62-3ubuntu0.16.04.2.debian.tar.xz (15.4 KiB)
• zziplib_0.13.62-3ubuntu0.16.04.2.dsc (2.1 KiB)
• zziplib_0.13.62.orig.tar.bz2 (669.7 KiB)