-
zziplib (0.13.62-3.1ubuntu0.17.10.1) artful-security; urgency=medium
* SECURITY UPDATE: invalid mem access in zzip_disk_fread
- debian/patches/CVE-2018-6381.patch: check sizes in zzip/memdisk.c.
- CVE-2018-6381
* SECURITY UPDATE: alignment and bus errors in __zzip_fetch_disk_trailer
- debian/patches/CVE-2018-6484.patch: check sizes in zzip/zip.c.
- CVE-2018-6484
- CVE-2018-6541
- CVE-2018-6869
* SECURITY UPDATE: bus error in zzip_disk_findfirst
- debian/patches/CVE-2018-6540.patch: check endbuf in zzip/mmapped.c.
- CVE-2018-6540
* SECURITY UPDATE: invalid memory dereference
- debian/patches/CVE-2018-7725.patch: check zlib space in
zzip/memdisk.c, zzip/mmapped.c.
- CVE-2018-7725
* SECURITY UPDATE: bus error in __zzip_parse_root_directory
- debian/patches/CVE-2018-7726-1.patch: check rootseek and rootsize in
zzip/zip.c.
- debian/patches/CVE-2018-7726-2.patch: check rootseek in zzip/zip.c.
- debian/patches/CVE-2018-7726-3.patch: check zz_rootsize in
zzip/zip.c.
- CVE-2018-7726
-- Marc Deslauriers <email address hidden> Fri, 29 Jun 2018 12:27:02 -0400
-
zziplib (0.13.62-3.1) unstable; urgency=medium
* Non-maintainer upload.
* Fix multiple security issues (Closes: #854727). Thanks to Josef
Moellers of SuSE for the patches!
-- Moritz Muehlenhoff <email address hidden> Sun, 04 Jun 2017 09:03:20 +0200
-
zziplib (0.13.62-3) unstable; urgency=medium
* debian/rules: Lintian error cleaning pkg-config-bad-directive
-- Scott Howard <email address hidden> Sun, 24 Aug 2014 22:20:40 -0400
