Tags: security patch
Tuomas Räsänen discovered the following vulnerabilities for unadf.
CVE-2016-1243: stack buffer overflow caused by blindly trusting on pathname
lengths of archived files.
CVE-2016-1244: execution of unsanitized input
The patch is available here:
If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
For further information see: