[Secure-testing-team] Bug#847486: unzip: CVE-2016-9844: zipinfo buffer overflow
Santiago Vila
sanvila at unex.es
Fri Dec 9 16:28:11 UTC 2016
On Thu, 8 Dec 2016, Salvatore Bonaccorso wrote:
> Source: unzip
> Version: 6.0-16
> Severity: important
> Tags: security upstream
>
> [...]
Ok, I have a patch for this bug, from the author, who publised a
revised version in his website.
The patch is attached to this email but I would like to know how he
will fix the other overflow before making an upload.
Thanks a lot.
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: 17-cve-2016-9844-zipinfo-buffer-overflow.txt
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20161209/fa00713b/attachment.txt>
More information about the Secure-testing-team
mailing list