SUSE CVE-2016-9844

Buffer overflow in the zishort function in zipinfo.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via a large compression method value in the central directory file header...

Buffer overflow in the zi_short function in zipinfo.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service (crash) via a large compression method value in the central directory file header.

...

EulerOS 2.0 SP3 : unzip (EulerOS-SA-2018-1170)

According to the versions of the unzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in the listfiles function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via vectors...

The vulnerability of the zi_short function in the Info-ZIP Unzip file archiver’s zipinfo.c file allows a hacker to trigger a service failure.

The vulnerability of the zishort function in the Info-ZIP Unzip file archiver exists because the result of the operation is stored outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures through vectors related to the compression method...

DEBIAN-CVE-2016-9844

Buffer overflow in the zishort function in zipinfo.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service crash via a large compression method value in the central directory file header...