Univention Bugzilla – Bug 37413
unzip: Multiple issues (ES 3.1)
Last modified: 2015-06-19 16:06:15 CEST
Multiple heap overflows in unzip (CVE-2014-8139, CVE-2014-8140, CVE-2014-8141)
Out of bands memory read when processing malformed ZIP archives (CVE-2014-9636)
Fix available in Debian version 6.0-4+deb6u2
# repo_admin.py -U -p unzip -d squeeze-lts -r 3.1-0-0 -s extsec3.1 # build-package-ng -r 3.1-0-0 -P ucs -s extsec3.1 --no-pbuilder-update -p unzip Package: unzip Version: 6.0-4.31.201506121311 Branch: ucs_3.1-0 Scope: extsec3.1
Created attachment 6959 [details] unzip extsec3.1 Advisory extracted from /usr/share/doc/unzip/changelog.Debian.gz
Tests (amd64): OK Advisory: OK
Released