Описание
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 6.0-21ubuntu1.2 |
| devel | not-affected | 6.0-27ubuntu1 |
| esm-infra-legacy/trusty | released | 6.0-9ubuntu1.6+esm1 |
| esm-infra/bionic | released | 6.0-21ubuntu1.2 |
| esm-infra/focal | released | 6.0-25ubuntu1.1 |
| esm-infra/xenial | released | 6.0-20ubuntu1.1+esm1 |
| focal | released | 6.0-25ubuntu1.1 |
| impish | ignored | end of life |
| jammy | released | 6.0-26ubuntu3.1 |
| trusty | ignored | end of standard support |
Показывать по
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
A flaw was found in Unzip. The vulnerability occurs during the convers ...
A flaw was found in unzip 6.0. The vulnerability occurs during the conversion of an utf-8 string to a local string that leads to a segmentation fault. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.
4.3 Medium
CVSS2
5.5 Medium
CVSS3