UbuntuUpdates.org

Package "unzip"

Name: unzip

Description:

De-archiver for .zip files
Latest version: 6.0-4ubuntu2.6
Release: precise (12.04)
Level: updates
Repository: main
Homepage: http://www.info-zip.org/UnZip.html

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "unzip"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "unzip" in Precise

Repository Area Version
base main 6.0-4ubuntu1
security main 6.0-4ubuntu2.6

Changelog

Version: 6.0-4ubuntu2.1 2015-01-15 03:07:22 UTC

  unzip (6.0-4ubuntu2.1) precise-security; urgency=medium

  * SECURITY UPDATE: CRC32 verification heap-based overflow
    - debian/patches/09-cve-2014-8139-crc-overflow: check extra block
      length in extract.c.
    - CVE-2014-8139
  * SECURITY UPDATE: out-of-bounds write issue in test_compr_eb()
    - debian/patches/10-cve-2014-8140-test-compr-eb: properly validate
      sizes in extract.c.
    - CVE-2014-8140
  * SECURITY UPDATE: out-of-bounds read issues in getZip64Data()
    - debian/patches/11-cve-2014-8141-getzip64data: validate extra fields
      in fileio.c, check sizes in process.c.
    - CVE-2014-8141
 -- Marc Deslauriers <email address hidden> Wed, 07 Jan 2015 16:14:50 -0500
Source diff to previous version
CVE-2014-8139 CRC32 heap overflow
CVE-2014-8140 heap overflow in test_compr_eb
CVE-2014-8141 heap overflow in getZip64Data

Version: 6.0-4ubuntu2 2013-11-12 21:06:53 UTC

  unzip (6.0-4ubuntu2) precise-proposed; urgency=low

  * Fix incorrectly displayed file names with UTF-8 characters.
    Add -DNO_WORKING_ISPRINT to build flags. (LP: #1199239, LP: #580961)
 -- Brian Murray <email address hidden> Wed, 06 Nov 2013 10:21:26 -0800
1199239 [SRU] unzip list utf-8 (non-ascii) filenames as ??
580961 unzip fails to deal correctly with filename encodings


About   -   Send Feedback to @ubuntu_updates