CBL Mariner 2.0 Security Update: unzip (CVE-2018-1000035)

The version of unzip installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2018-1000035 advisory. - A heap-based buffer overflow exists in Info-Zip UnZip version = 6.00 in the processing of password- protect...

RHEL 7 : unzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution CVE-2018-1000035...

RHEL 5 : unzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution CVE-2018-1000035...

RHEL 5 : unzip (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unzip: Heap-based buffer overflow in fileio.c:UzpPassword function allows code execution CVE-2018-1000035...

CVE-2018-1000035 affecting package unzip for versions less than 6.0-20

CVE-2018-1000035 affecting package unzip for versions less than 6.0-20. A patched version of the package is available...

BELL-CVE-2018-1000035 CVE-2018-1000035 does not affect BellSoft software

Bulletin has no description...

InfoZip UnZip Buffer Overflow (CVE-2018-1000035)

A heap buffer overflow vulnerability exists in InfoZip UnZip. The vulnerability is due to insufficient handling of password protected zip files. A remote attacker can exploit this vulnerability by enticing a target user into extracting a maliciously crafted zip file...

Slackware: Security Advisory (SSA:2019-060-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-1000035 affecting package unzip for versions less than 6.0-19

CVE-2018-1000035 affecting package unzip for versions less than 6.0-19. A patched version of the package is available...

SUSE: Security Advisory (SUSE-SU-2018:2978-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-4672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS / 18.04 LTS : unzip vulnerabilities (USN-4672-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4672-1 advisory. Rene Freingruber discovered that unzip incorrectly handled certain specially crafted password protected ZIP archives. If a user or automated...

CVE-2018-1000035 affecting package unzip 6.0-19

CVE-2018-1000035 affecting package unzip 6.0-19. A patched version of the package is available...

Huawei EulerOS: Security Advisory for unzip (EulerOS-SA-2019-2677)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Photon OS 2.0: Unzip PHSA-2018-2.0-0052

An update of the unzip package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0052. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121952...

Updated unzip packages fix security vulnerabilities

Updated unzip packages fix security vulnerabilities Heap-based out-of-bounds write CVE-2018-1000031. Heap/BSS-based buffer overflow Bypass of CVE-2015-1315 CVE-2018-1000032. Heap out-of-bounds access in efscanforstream CVE-2018-1000033. Multiple vulnerabilities in the LZMA compression algorithm...

openSUSE: Security Advisory for unzip (openSUSE-SU-2018:1914-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE: Security Advisory for unzip (openSUSE-SU-2018:3043-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED12 / SLES12 Security Update : unzip (SUSE-SU-2018:2978-1)

This update for unzip fixes the following security issues : CVE-2014-9913: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption bsc1013993 CVE-2015-7696: Specially crafted zip files with password protection could trigger a crash and lead to denia...

Photon OS 2.0 : unzip (PhotonOS-PHSA-2018-2.0-0052) (deprecated)

An update of 'unzip' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0052. The text itself is copyright C VMware, Inc...