code.ossystems Code Review - openembedded-core.git/commit

author	Roy Li <rongqing.li@windriver.com>
	Wed, 29 Apr 2015 00:53:35 +0000 (08:53 +0800)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Mon, 20 Jul 2015 19:53:08 +0000 (20:53 +0100)
commit	7c667c6aa0302649c125b0325a2e6f641810cb09
tree	073851dbd108e619544a54674c19cfd3f18578dd	tree \| snapshot
parent	f4953004ec26c97fb696854f8e31d36b8bbeb8bf	commit \| diff

unzip: Security Advisory -CVE-2014-9636 and CVE-2015-1315

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9636

unzip 6.0 allows remote attackers to cause a denial of service
(out-of-bounds read or write and crash) via an extra field with
an uncompressed size smaller than the compressed field size in a
zip archive that advertises STORED method compression.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1315

Buffer overflow in the charset_to_intern function in unix/unix.c in
Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code
via a crafted string, as demonstrated by converting a string from CP866
to UTF-8.

(From OE-Core rev: f86a178fd7036541a45bf31a46bddf634c133802)

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

meta/recipes-extended/unzip/unzip/06-unzip60-alt-iconv-utf8_CVE-2015-1315.patch	[new file with mode: 0644]	blob
meta/recipes-extended/unzip/unzip/unzip-6.0_overflow3.diff	[new file with mode: 0644]	blob
meta/recipes-extended/unzip/unzip_6.0.bb		diff \| blob \| history