]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 6cb0e40) | patch
unzip: Security Advisory -CVE-2014-9636 and CVE-2015-1315
authorRoy Li <rongqing.li@windriver.com>
Wed, 29 Apr 2015 00:53:35 +0000 (08:53 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Thu, 14 May 2015 10:41:10 +0000 (11:41 +0100)
commitf86a178fd7036541a45bf31a46bddf634c133802
treef44a34b5365088995ef983f4fd0efe8269ffc20dtree | snapshot
parent6cb0e401f0bfc962eb9f57988fd93f0b0d43c79bcommit | diff
unzip: Security Advisory -CVE-2014-9636 and CVE-2015-1315

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9636

unzip 6.0 allows remote attackers to cause a denial of service
(out-of-bounds read or write and crash) via an extra field with
an uncompressed size smaller than the compressed field size in a
zip archive that advertises STORED method compression.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1315

Buffer overflow in the charset_to_intern function in unix/unix.c in
Info-Zip UnZip 6.10b allows remote attackers to execute arbitrary code
via a crafted string, as demonstrated by converting a string from CP866
to UTF-8.

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
meta/recipes-extended/unzip/unzip/06-unzip60-alt-iconv-utf8_CVE-2015-1315.patch [new file with mode: 0644] blob
meta/recipes-extended/unzip/unzip/unzip-6.0_overflow3.diff [new file with mode: 0644] blob
meta/recipes-extended/unzip/unzip_6.0.bb diff | blob | history
Mirror of the official openembedded-core repository