unzip -- out of boundary access issues in test_compr_eb

2014-11-02T00:00:00
ID E543C6F8-ABF2-11E4-8AC7-D050992ECDE8
Type freebsd
Reporter FreeBSD
Modified 2014-11-02T00:00:00

Description

Ubuntu Security Notice USN-2489-1 reports:

Michal Zalewski discovered that unzip incorrectly handled certain malformed zip archives. If a user or automated system were tricked into processing a specially crafted zip archive, an attacker could possibly execute arbitrary code.