RHSA-2015:0700Medium
Red Hat Security Advisory: unzip security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2014-8139 — unzip: CRC32 verification heap-based buffer overread (oCERT-2014-011) CVE-2014-8140 — unzip: out-of-bounds write issue in test_compr_eb() (oCERT-2014-011) CVE-2014-8141 — unzip: getZip64Data() out-of-bounds read issues (oCERT-2014-011) CVE-2014-9636 — unzip: out-of-bounds read/write in test_compr_eb() in extract.c
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2015:0700
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1174844
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1174851
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1174856
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1184985
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0700.json