Lucene search
GoogleOSV:DSA-1012-1HistoryMar 21, 2006 - 12:00 a.m.
unzip - buffer overflow
2006-03-2100:00:00
Google
osv.dev
5
0.002 Low
EPSS
Percentile
58.8%
A buffer overflow in the command line argument parsing has been
discovered in unzip, the de-archiver for ZIP files, that could lead to
the execution of arbitrary code.
For the old stable distribution (woody) this problem has been fixed in
version 5.50-1woody6.
For the stable distribution (sarge) this problem has been fixed in
version 5.52-1sarge4.
For the unstable distribution (sid) this problem has been fixed in
version 5.52-7.
We recommend that you upgrade your unzip package.
| CPE | Name | Operator | Version |
|---|---|---|---|
| unzip | eq | 5.52-1sarge1 | |
| unzip | eq | 5.52-1sarge3 | |
| unzip | eq | 5.52-1sarge2 | |
| unzip | eq | 5.52-1 |
References
Related
nessus
nessus
Ubuntu 4.10 / 5.04 / 5.10 : unzip vulnerability (USN-248-1)
2006-03-13 00:00:00
Debian DSA-1012-1 : unzip - buffer overflow
2006-10-14 00:00:00
Fedora Core 4 : unzip-5.51-13.fc4 (2006-098)
2006-02-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1012-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1012-1 (unzip)
2008-01-17 00:00:00
ubuntu
ubuntu
unzip vulnerability
2006-02-15 00:00:00
nvd
nvd
CVE-2005-4667
2005-12-31 05:00:00
debian
debian
[SECURITY] [DSA 1012-1] New unzip packages fix arbitrary code execution
2006-03-21 08:24:18
[SECURITY] [DSA 1012-1] New unzip packages fix arbitrary code execution
2006-03-21 08:24:18
debiancve
debiancve
CVE-2005-4667
2006-01-25 21:00:00
ubuntucve
ubuntucve
CVE-2005-4667
2005-12-31 00:00:00
cve
cve
CVE-2005-4667
2006-01-25 21:00:00
cvelist
cvelist
CVE-2005-4667
2006-01-25 21:00:00
centos
centos
unzip security update
2007-05-02 08:59:05
oraclelinux
oraclelinux
Low unzip security and bug fix update
2007-05-17 00:00:00
redhat
redhat
(RHSA-2007:0203) Low: unzip security and bug fix update
2007-05-01 00:00:00