Published: 06/02/2015 Updated: 16/12/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

unzip 6.0 allows remote malicious users to cause a denial of service (out-of-bounds read or write and crash) via an extra field with an uncompressed size smaller than the compressed field size in a zip archive that advertises STORED method compression.

Vulnerable Product	Search on Vulmon	Subscribe to Product
unzip project unzip 6.0
canonical ubuntu linux 14.04
canonical ubuntu linux 12.04
canonical ubuntu linux 14.10
canonical ubuntu linux 10.04
debian debian linux 7.0
fedoraproject fedora 20
fedoraproject fedora 21

Michal Zalewski discovered that unzip incorrectly handled certain malformed zip archives If a user or automated system were tricked into processing a specially crafted zip archive, an attacker could possibly execute arbitrary code ...

A flaw was found in the test_compr_eb() function allowing out-of-bounds read and write access to memory locations By carefully crafting a corrupt ZIP archive an attacker can trigger a heap overflow, resulting in application crash or possibly having other unspecified impact For the stable distribution (wheezy), this problem has been fixed in versi ...

Debian Bug report logs - #776589 unzip: CVE-2014-9636 heap overflow via mismatched block sizes Package: unzip; Maintainer for unzip is Santiago Vila <sanvila@debianorg>; Source for unzip is src:unzip (PTS, buildd, popcon) Reported by: Marc Deslauriers <marcdeslauriers@ubuntucom> Date: Thu, 29 Jan 2015 16:54:02 UTC ...

Debian Bug report logs - #847485 unzip: CVE-2014-9913: buffer overflow in "unzip -l" via list_files() in listc Package: src:unzip; Maintainer for src:unzip is Santiago Vila <sanvila@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 8 Dec 2016 16:33:08 UTC Severity: important Tags: securi ...

Debian Bug report logs - #847486 unzip: CVE-2016-9844: zipinfo buffer overflow Package: src:unzip; Maintainer for src:unzip is Santiago Vila <sanvila@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 8 Dec 2016 16:36:01 UTC Severity: important Tags: security, upstream Found in version un ...

A buffer overflow was found in the way unzip uncompressed certain extra fields of a file A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with unzip's '-t' option (CVE-2014-9636) A buffer overflow flaw was found in the way unzip computed the CRC32 checksum of certain extra ...

A buffer overflow was found in the way unzip uncompressed certain extra fields of a file A specially crafted Zip archive could cause unzip to crash or, possibly, execute arbitrary code when the archive was tested with unzip's '-t' option ...

CWE-119 http://seclists.org/oss-sec/2014/q4/1131 http://www.info-zip.org/phpBB3/viewtopic.php?f=7&t=450 http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148792.html http://seclists.org/oss-sec/2014/q4/489 http://www.debian.org/security/2015/dsa-3152 http://secunia.com/advisories/62738 http://seclists.org/oss-sec/2014/q4/496 http://secunia.com/advisories/62751 http://www.securityfocus.com/bid/71825 http://www.ubuntu.com/usn/USN-2489-1 http://seclists.org/oss-sec/2015/q1/216 http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148849.html http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html https://security.gentoo.org/glsa/201611-01 https://usn.ubuntu.com/2489-1/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2014-9636

CVE-2014-9636

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect