subject:"Bug#889089\: zziplib\: CVE\-2018\-6484\: Bus error in __zzip_fetch_disk_trailer"

Bug#889089: zziplib: CVE-2018-6484: Bus error in __zzip_fetch_disk_trailer

2019-03-03 Thread Salvatore Bonaccorso

Furthermore CVE-2018-6869 is fixed with the same upstream commit https://github.com/gdraheim/zziplib/commit/0c0c9256b0903f664bca25dd8d924211f81e01d3 Regards, Salvatore

Bug#889089: zziplib: CVE-2018-6484: Bus error in __zzip_fetch_disk_trailer

2018-02-01 Thread Salvatore Bonaccorso

Source: zziplib Version: 0.13.62-3 Severity: important Tags: security upstream Hi, the following vulnerability was published for zziplib. CVE-2018-6484[0]: | In ZZIPlib 0.13.67, there is a memory alignment error and bus error in | the __zzip_fetch_disk_trailer function of zzip/zip.c. Remote atta