6 matches found
CentOS 4 : unzip (CESA-2007:0203)
Updated unzip packages that fix two security issues and various bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The unzip utility is used to list, test, or extract files from a zip archive. A race condition was found in Unzip...
Scientific Linux Security Update : unzip on SL4.x i386/x86_64
A race condition was found in Unzip. Local users could use this flaw to modify permissions of arbitrary files via a hard link attack on a file while it was being decompressed CVE-2005-2475 A buffer overflow was found in Unzip command line argument handling. If a user could be tricked into running...
Low: Red Hat Bug Fix Advisory: unzip bug fix update
Updated unzip packages that address various bugs are now available. The unzip utility is used to list, test, or extract files from a zip archive. This update addresses the following issues: a TOCTOU bug that could be exploited to change file permissions CVE-2005-2475 a long filename buffer overfl...
RHEL 4 : unzip (RHSA-2007:0203)
Updated unzip packages that fix two security issues and various bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The unzip utility is used to list, test, or extract files from a zip archive. A race condition was found in Unzip...
Low: Red Hat Security Advisory: unzip security and bug fix update
Updated unzip packages that fix two security issues and various bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The unzip utility is used to list, test, or extract files from a zip archive. A race condition was found in Unzip...
CVE-2005-4667
CVE-2005-4667 is a vulnerability in the unzip utility where a buffer overflow can occur in command line argument handling (long filename) that could allow arbitrary code execution. The issue is reported in Unzip 5.50 and earlier and is exploitable when unzip processes crafted long file name argum...