Univention Bugzilla – Bug 46245
p7zip: Multiple issues (4.2)
Last modified: 2018-02-14 13:31:54 CET
New Debian p7zip 9.20.1~dfsg.1-4.A~4.2.3.201802061643 fixes: This update addresses the following issues: * The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp allows remote attackers to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file. (CVE-2016-2335) * Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive. (CVE-2017-17969) * p7zip allows remote attackers to write to arbitrary files via a symlink attack in an archive. (CVE-2015-1038) The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20 and 15.05 beta and p7zip allows remote attackers to cause a denial of service (out-of-bounds read) or execute arbitrary code via the PartitionRef field in the Long Allocation Descriptor in a UDF file. Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive. p7zip 9.20.1 allows remote attackers to write to arbitrary files via a symlink attack in an archive.
0d5f2f6d92 Bug #46245: p7zip_9.20.1~dfsg.1-4
YAML: OK Build: OK (No patches, the package needed to be build since the Debian package version is too low) Tests: OK - installation works
<http://errata.software-univention.de/ucs/4.2/302.html>