[Bug 1957077] Re: SIGSEGV during processing of unicode string
** Changed in: unzip (Ubuntu) Importance: Undecided => Low -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
** Changed in: unzip (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
According to https://bugzilla.redhat.com/show_bug.cgi?id=2044583 this is CVE-2021-4217. ** Bug watch added: Red Hat Bugzilla #2044583 https://bugzilla.redhat.com/show_bug.cgi?id=2044583 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-4217 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
The attachment "0001-Fix-null-pointer-dereference-and-use-of- uninitialized-data.patch" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team. [This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.] ** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
I attached a fix for the reported issue. However, since I am not familiar with unzip, someone should review it. Thanks! ** Patch added: "0001-Fix-null-pointer-dereference-and-use-of-uninitialized-data.patch" https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+attachment/5554956/+files/0001-Fix-null-pointer-dereference-and-use-of-uninitialized-data.patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
There is no patch for this issue? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
The attached attachment.zip file contains the bug triggering payload and a script to reproduce the bug via a prebuilt docker image. ** Attachment removed: "Please extract, this contains the crashing input besides other files helpful for reproduction." https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+attachment/5553357/+files/attachment.zip ** Attachment added: "attachment.zip" https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+attachment/5554349/+files/attachment.zip -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1957077] Re: SIGSEGV during processing of unicode string
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957077 Title: SIGSEGV during processing of unicode string To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs