unzip security update

🗓️ 08 Apr 2020 20:06:45Reported by CentOS ProjectType

centos

centos🔗 lists.centos.org👁 232 Views

Security update for unzip utility addressing denial of service vulnerabilit

Reporter	Title	Published	Views	Family All 109
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities	9 Apr 202103:15	–	ibm
IBM Security Bulletins	Security Bulletin: Unzip as used by IBM QRadar SIEM is vulnerable to denial of service (CVE-2019-13232)	13 Oct 202016:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Appliance is affected by a denial of service vulnerability (CVE-2019-13232)	23 Jul 202021:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM DataPower Gateway may allow a potential DoS when importing malicious ZIP files (CVE-2019-13232)	8 Jun 202122:33	–	ibm
Tenable Nessus	Amazon Linux 2023 : unzip (ALAS2023-2026-1422)	5 Feb 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : unzip (ALAS-2020-1550)	27 Oct 202000:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0051: unzip (ALINUX3-SA-2022:0051)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : unzip (ALSA-2020:1787)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : unzip (CESA-2020:1787)	1 Feb 202100:00	–	nessus
Tenable Nessus	CentOS 7 : unzip (CESA-2020:1181)	10 Apr 202000:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	7	x86_64	unzip	6.0-21.el7	unzip-6.0-21.el7.x86_64.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
access	www.access.redhat.com/errata/RHSA-2020:1181
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/

08 Apr 2020 20:06Current

6.5Medium risk

Vulners AI Score6.5

CVSS 22.1

CVSS 3.13.3

EPSS0.00495

centos security advisory unzip denial of service red hat enterprise linux