zziplib 0.13.62-3.2 source package in Ubuntu
Changelog
zziplib (0.13.62-3.2) unstable; urgency=medium
* Non-maintainer upload.
* Invalid memory access in zzip_disk_fread (CVE-2018-6381) (Closes: #889096)
* Reject the ZIP file and report it as corrupt if the size of the central
directory and/or the offset of start of central directory point beyond the
end of the ZIP file (CVE-2018-6484, CVE-2018-6541, CVE-2018-6869)
(Closes: #889089)
* bus error in zzip_disk_findfirst function in zzip/mmapped.c
(CVE-2018-6540) (Closes: #923659)
* out of bound read in mmapped.c:zzip_disk_fread() causes crash
(CVE-2018-7725) (Closes: #913165)
* Bus error in zip.c:__zzip_parse_root_directory() cause crash via crafted
zip file (CVE-2018-7726) (Closes: #913165)
* Memory leak triggered in the function __zzip_parse_root_directory in zip.c
(CVE-2018-16548) (Closes: #910335)
-- Salvatore Bonaccorso <email address hidden> Mon, 04 Mar 2019 22:43:14 +0100
Upload details
- Uploaded by:
- Scott Howard
- Uploaded to:
- Sid
- Original maintainer:
- Scott Howard
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| zziplib_0.13.62-3.2.dsc | 2.1 KiB | c02427dd520086d8709cbb1b691f469686a74a05aac646d51cee47b4353c15bf |
| zziplib_0.13.62.orig.tar.bz2 | 669.7 KiB | a1b8033f1a1fd6385f4820b01ee32d8eca818409235d22caf5119e0078c7525b |
| zziplib_0.13.62-3.2.debian.tar.xz | 16.0 KiB | cbe442563e0e9c1fdb83847442ddd0be5ec72e64689e08ab3b19cabb72650d81 |
Available diffs
No changes file available.
Binary packages built by this source
- libzzip-0-13: library providing read access on ZIP-archives - library
The zziplib library is intentionally lightweight, it offers the ability
to easily extract data from files archived in a single zip file.
Applications can bundle files into a single zip archive and access them.
The implementation is based only on the (free) subset of compression
with the zlib algorithm which is actually used by the zip/unzip tools.
.
This package contains the zziplib runtime library.
- libzzip-0-13-dbgsym: No summary available for libzzip-0-13-dbgsym in ubuntu disco.
No description available for libzzip-0-13-dbgsym in ubuntu disco.
- libzzip-dev: No summary available for libzzip-dev in ubuntu disco.
No description available for libzzip-dev in ubuntu disco.
- zziplib-bin: library providing read access on ZIP-archives - binaries
The zziplib library is intentionally lightweight, it offers the ability
to easily extract data from files archived in a single zip file.
Applications can bundle files into a single zip archive and access them.
The implementation is based only on the (free) subset of compression
with the zlib algorithm which is actually used by the zip/unzip tools.
.
This package contains some useful binaries to extract data from zip
archives.
- zziplib-bin-dbgsym: No summary available for zziplib-bin-dbgsym in ubuntu disco.
No description available for zziplib-bin-dbgsym in ubuntu disco.
