Lucene search

K
archlinuxArch LinuxASA-201511-1
HistoryNov 03, 2015 - 12:00 a.m.

unzip: multiple issues

2015-11-0300:00:00
Arch Linux
lists.archlinux.org
28
cve-2015-7696
arbitrary code execution
heap buffer overflow
cve-2015-7697
denial of service
unix

EPSS

0.047

Percentile

92.7%

  • CVE-2015-7696 (arbitrary code execution)

A heap buffer overflow triggered by unzipping a file with password that
can lead to arbitrary code execution.

  • CVE-2015-7697 (denial of service)

A denial of service with a file that never finishes unzipping.

OSVersionArchitecturePackageVersionFilename
anyanyanyunzip< 6.0-11UNKNOWN