258 matches found
UBUNTU-CVE-2019-13232
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue...
CVE-2019-13232
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue...
CVE-2019-13232
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue...
CVE-2019-13232
Info-ZIP UnZip 6.0 vulnerability CVE-2019-13232: overlapping file entries in a ZIP container can cause denial of service (resource consumption). Concrete details across connected docs show affected unzip versions (e.g., 6.0 and prior) and that multiple distributions released updates to mitigate b...
CVE-2019-13232
Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service resource consumption, aka a "better zip bomb" issue...
PT-2019-5050 · Info Zip +4 · Info-Zip Unzip +4
Name of the Vulnerable Software and Affected Versions: Info-ZIP UnZip version 6.0 Description: The issue is related to the mishandling of overlapping files inside a ZIP container, which can lead to denial of service due to resource consumption, also known as a "better zip bomb" issue. Additionall...
EulerOS Virtualization for ARM 64 3.0.2.0 : unzip (EulerOS-SA-2019-1627)
According to the version of the unzip package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-si...
EulerOS Virtualization 3.0.1.0 : unzip (EulerOS-SA-2019-1467)
According to the version of the unzip package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value an...
The vulnerability of the list.c file in the Info-ZIP UnZip compressor allows a hacker to execute arbitrary code.
The vulnerability of the list.c file in the Info-ZIP UnZip compressor arises due to an overflow in the memory buffer. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
CVE-2018-18384
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
CVE-2018-18384
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
Buffer overflow
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
CVE-2018-18384
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
CVE-2018-18384
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
CVE-2018-18384
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
CVE-2018-18384
CVE-2018-18384 affects Info-ZIP UnZip 6.0. The vulnerability is a buffer overflow in list.c caused by a mismatch between a crafted compressed-size/uncompressed-size relationship and an insufficient buffer (size 10 instead of 12). For some distributions, patched packages exist (e.g., unzip 6.0-20 ...
CVE-2018-18384
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12...
CVE-2018-13410
Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service invalid free and application crash or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in which an...
CVE-2018-13410
Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service invalid free and application crash or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in which an...
CVE-2018-13410
DISPUTED Info-ZIP Zip 3.0, when the -T and -TT command-line options are used, allows attackers to cause a denial of service invalid free and application crash or possibly have unspecified other impact because of an off-by-one error. NOTE: it is unclear whether there are realistic scenarios in whi...