Information on source package libzip

Available versions

ReleaseVersion
jessie0.11.2-1.2
stretch1.1.2-1.1
buster1.5.1-4
sid1.5.1-4

Open issues

BugjessiestretchbustersidDescription
CVE-2017-14107vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 mis ...

Resolved issues

BugDescription
CVE-2017-12858Double free vulnerability in the _zip_dirent_read function in zip_dire ...
CVE-2015-2331Integer overflow in the _zip_cdir_new function in zip_dirent.c in libz ...
CVE-2012-1163Integer overflow in the _zip_readcdir function in zip_open.c in libzip ...
CVE-2012-1162Heap-based buffer overflow in the _zip_readcdir function in zip_open.c ...
CVE-2011-0421The _zip_name_locate function in zip_name_locate.c in the Zip extensio ...

Search for package or bug name: Reporting problems