Publishing details

• Removed from disk on 2020-12-29.
• Removal requested on 2020-07-14.
• Published on 2019-03-18
• Copied from debian sid in Primary Archive for Debian GNU/Linux by Ubuntu Archive Auto-Sync (sponsored by Ubuntu Archive Robot)

Changelog

zziplib (0.13.62-3.2) unstable; urgency=medium

  * Non-maintainer upload.
  * Invalid memory access in zzip_disk_fread (CVE-2018-6381) (Closes: #889096)
  * Reject the ZIP file and report it as corrupt if the size of the central
    directory and/or the offset of start of central directory point beyond the
    end of the ZIP file (CVE-2018-6484, CVE-2018-6541, CVE-2018-6869)
    (Closes: #889089)
  * bus error in zzip_disk_findfirst function in zzip/mmapped.c
    (CVE-2018-6540) (Closes: #923659)
  * out of bound read in mmapped.c:zzip_disk_fread() causes crash
    (CVE-2018-7725) (Closes: #913165)
  * Bus error in zip.c:__zzip_parse_root_directory() cause crash via crafted
    zip file (CVE-2018-7726) (Closes: #913165)
  * Memory leak triggered in the function __zzip_parse_root_directory in zip.c
    (CVE-2018-16548) (Closes: #910335)

 -- Salvatore Bonaccorso <email address hidden>  Mon, 04 Mar 2019 22:43:14 +0100

Builds

• amd64
• arm64
• armhf
• i386
• ppc64el
• s390x

Package files

• libzzip-0-13-dbgsym_0.13.62-3.2_amd64.ddeb (5.6 KiB)
• libzzip-0-13-dbgsym_0.13.62-3.2_arm64.ddeb (6.0 KiB)
• libzzip-0-13-dbgsym_0.13.62-3.2_armhf.ddeb (6.3 KiB)
• libzzip-0-13-dbgsym_0.13.62-3.2_i386.ddeb (5.8 KiB)
• libzzip-0-13-dbgsym_0.13.62-3.2_ppc64el.ddeb (5.9 KiB)
• libzzip-0-13-dbgsym_0.13.62-3.2_s390x.ddeb (5.6 KiB)
• libzzip-0-13_0.13.62-3.2_amd64.deb (25.2 KiB)
• libzzip-0-13_0.13.62-3.2_arm64.deb (25.1 KiB)
• libzzip-0-13_0.13.62-3.2_armhf.deb (21.5 KiB)
• libzzip-0-13_0.13.62-3.2_i386.deb (27.0 KiB)
• libzzip-0-13_0.13.62-3.2_ppc64el.deb (28.8 KiB)
• libzzip-0-13_0.13.62-3.2_s390x.deb (24.6 KiB)
• libzzip-dev_0.13.62-3.2_amd64.deb (78.8 KiB)
• libzzip-dev_0.13.62-3.2_arm64.deb (79.6 KiB)
• libzzip-dev_0.13.62-3.2_armhf.deb (75.6 KiB)
• libzzip-dev_0.13.62-3.2_i386.deb (81.3 KiB)
• libzzip-dev_0.13.62-3.2_ppc64el.deb (85.1 KiB)
• libzzip-dev_0.13.62-3.2_s390x.deb (78.5 KiB)
• zziplib-bin-dbgsym_0.13.62-3.2_amd64.ddeb (4.2 KiB)
• zziplib-bin-dbgsym_0.13.62-3.2_arm64.ddeb (4.6 KiB)
• zziplib-bin-dbgsym_0.13.62-3.2_armhf.ddeb (5.0 KiB)
• zziplib-bin-dbgsym_0.13.62-3.2_i386.ddeb (4.2 KiB)
• zziplib-bin-dbgsym_0.13.62-3.2_ppc64el.ddeb (4.7 KiB)
• zziplib-bin-dbgsym_0.13.62-3.2_s390x.ddeb (4.1 KiB)
• zziplib-bin_0.13.62-3.2_amd64.deb (10.6 KiB)
• zziplib-bin_0.13.62-3.2_arm64.deb (10.7 KiB)
• zziplib-bin_0.13.62-3.2_armhf.deb (10.4 KiB)
• zziplib-bin_0.13.62-3.2_i386.deb (10.7 KiB)
• zziplib-bin_0.13.62-3.2_ppc64el.deb (12.3 KiB)
• zziplib-bin_0.13.62-3.2_s390x.deb (10.5 KiB)
• zziplib_0.13.62-3.2.debian.tar.xz (16.0 KiB)
• zziplib_0.13.62-3.2.dsc (2.1 KiB)
• zziplib_0.13.62.orig.tar.bz2 (669.7 KiB)