Format: 1.8
Date: Wed, 07 Jan 2015 16:14:50 -0500
Source: unzip
Binary: unzip
Architecture: amd64
Version: 6.0-4ubuntu2.1
Distribution: precise
Urgency: medium
Maintainer: Ubuntu/amd64 Build Daemon <buildd@kapok.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 unzip      - De-archiver for .zip files
Changes: 
 unzip (6.0-4ubuntu2.1) precise-security; urgency=medium
 .
   * SECURITY UPDATE: CRC32 verification heap-based overflow
     - debian/patches/09-cve-2014-8139-crc-overflow: check extra block
       length in extract.c.
     - CVE-2014-8139
   * SECURITY UPDATE: out-of-bounds write issue in test_compr_eb()
     - debian/patches/10-cve-2014-8140-test-compr-eb: properly validate
       sizes in extract.c.
     - CVE-2014-8140
   * SECURITY UPDATE: out-of-bounds read issues in getZip64Data()
     - debian/patches/11-cve-2014-8141-getzip64data: validate extra fields
       in fileio.c, check sizes in process.c.
     - CVE-2014-8141
Checksums-Sha1: 
 a5043948d79edbbf09a50a5fa2011a1622cb8479 193952 unzip_6.0-4ubuntu2.1_amd64.deb
Checksums-Sha256: 
 b4b8f29605b81850114593d292ffa9471ab8c227212c274c262f0f1d0ebb6ddf 193952 unzip_6.0-4ubuntu2.1_amd64.deb
Files: 
 3d6cbbed0b2095653766190e1dab8919 193952 utils optional unzip_6.0-4ubuntu2.1_amd64.deb
Original-Maintainer: Santiago Vila <sanvila@debian.org>