Thanks, I can reproduce the issue with the zipfile in attachment #13.
The issue is caused by the 16-fix-integer-underflow-csiz-decrypted patch
breaking support for 0-byte files because "if (csiz_decrypted <= 12)"
should be "if (csiz_decrypted < 12)".
I'll prepare a regression fix. Thanks!
** Also affects: unzip (Ubuntu Xenial)
Importance: High
Status: New
** Also affects: unzip (Ubuntu Precise)
Importance: Undecided
Status: New
** Also affects: unzip (Ubuntu Vivid)
Importance: Undecided
Status: New
** Also affects: unzip (Ubuntu Trusty)
Importance: Undecided
Status: New
** Also affects: unzip (Ubuntu Wily)
Importance: Undecided
Status: New
** Changed in: unzip (Ubuntu Precise)
Status: New => Confirmed
** Changed in: unzip (Ubuntu Trusty)
Status: New => Confirmed
** Changed in: unzip (Ubuntu Vivid)
Status: New => Confirmed
** Changed in: unzip (Ubuntu Wily)
Status: New => Confirmed
** Changed in: unzip (Ubuntu Xenial)
Status: New => Confirmed
** Changed in: unzip (Ubuntu Precise)
Assignee: (unassigned) => Marc Deslauriers (mdeslaur)
** Changed in: unzip (Ubuntu Trusty)
Assignee: (unassigned) => Marc Deslauriers (mdeslaur)
** Changed in: unzip (Ubuntu Vivid)
Assignee: (unassigned) => Marc Deslauriers (mdeslaur)
** Changed in: unzip (Ubuntu Wily)
Assignee: (unassigned) => Marc Deslauriers (mdeslaur)
** Changed in: unzip (Ubuntu Xenial)
Assignee: (unassigned) => Marc Deslauriers (mdeslaur)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1513293
Title:
unzip security update leads to extracting errors
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1513293/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
