Debian: Security Advisory (DLA-846-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2018-0020 Updated libzip packages fix security vulnerability

The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive CVE-2017-14107...

Updated libzip packages fix security vulnerability

The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive CVE-2017-14107...

[ASA-201711-13] libzip: arbitrary code execution

Arch Linux Security Advisory ASA-201711-13 ========================================== Severity: High Date : 2017-11-07 CVE-ID : CVE-2017-12858 Package : libzip Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-390 Summary ======= The package libzip before...

[SECURITY] Fedora 27 Update: mingw-libzip-1.3.0-1.fc27

libzip is a C library for reading, creating, and modifying zip archives. Fi les can be added from data buffers, files, or compressed data copied directly f rom other zip archives. Changes made without closing the archive can be reverte d. The API is documented by man pages...

[SECURITY] Fedora 27 Update: libzip-1.3.0-1.fc27

libzip is a C library for reading, creating, and modifying zip archives. Fi les can be added from data buffers, files, or compressed data copied directly f rom other zip archives. Changes made without closing the archive can be reverte d. The API is documented by man pages...

FreeBSD : libzip -- denial of service (b2952517-07e5-4d19-8850-21c5b7e0623f)

libzip developers report : The zipreadeocd64 function in zipopen.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive. %NASLMINLEVEL 70300 C Tenable Network...

SUSE SLED12 / SLES12 Security Update : libzip (SUSE-SU-2017:2546-1)

This update for libzip fixes one issues. This security issue was fixed : - CVE-2017-14107: The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive bsc1056996...

openSUSE Security Update : libzip (openSUSE-2017-1084)

This update for libzip fixes the following security issue : - CVE-2017-14107: The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive bsc1056996. This update w...

SUSE-SU-2017:2546-1 Security update for libzip

This update for libzip fixes one issues. This security issue was fixed: - CVE-2017-14107: The zipreadeocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service memory allocation failure in zipcdirgrow in zipdirent.c via a crafted ZIP archive bsc1056996...

Fedora 26 : mingw-libzip (2017-4d4914a260)

Update to version 1.3.0, see https://nih.at/libzip/NEWS.html for details. ---- This update backports security fix for CVE-2017-14107. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

Fedora 25 : mingw-libzip (2017-bb5d87e9de)

This update fixes CVE-2017-14107. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora Update for mingw-libzip FEDORA-2017-4d4914a260

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for mingw-libzip FEDORA-2017-bb5d87e9de

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 26 Update: mingw-libzip-1.3.0-1.fc26

libzip is a C library for reading, creating, and modifying zip archives. Fi les can be added from data buffers, files, or compressed data copied directly f rom other zip archives. Changes made without closing the archive can be reverte d. The API is documented by man pages...

[SECURITY] Fedora 25 Update: mingw-libzip-1.1.3-3.fc25

libzip is a C library for reading, creating, and modifying zip archives. Fi les can be added from data buffers, files, or compressed data copied directly f rom other zip archives. Changes made without closing the archive can be reverte d. The API is documented by man pages...

Slackware 14.2 / current : libzip (SSA:2017-255-02)

New libzip packages are available for Slackware 14.2 and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2017-255-02. The text itself is copyright C Slackwa...

[slackware-security] libzip

New libzip packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libzip-1.0.1-i586-3slack14.2.txz: Rebuilt. Fix a denial of service security issue. For more information, see:...

Fedora Update for mingw-libzip FEDORA-2017-f0b31bc9c5

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libzip '_zip_read_eocd64' function denial of service vulnerability

libzip is a C library for reading, creating and modifying zip archives developed by software developers Dieter Baron and Thomas Klausner. A security vulnerability exists in the 'zipreadeocd64' function of the zipopen.c file in versions of libzip prior to 1.3.0. A remote attacker can exploit this...