Information on source package unzip

Available versions

ReleaseVersion
buster6.0-23+deb10u2
buster (security)6.0-23+deb10u3
bullseye6.0-26+deb11u1
bookworm6.0-28
trixie6.0-28
sid6.0-28

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2021-4217vulnerablevulnerablevulnerablevulnerablevulnerableA flaw was found in unzip. The vulnerability occurs due to improper ha ...

Resolved issues

BugDescription
CVE-2022-0530A flaw was found in Unzip. The vulnerability occurs during the convers ...
CVE-2022-0529A flaw was found in Unzip. The vulnerability occurs during the convers ...
CVE-2019-13232Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP co ...
CVE-2018-1000035A heap-based buffer overflow exists in Info-Zip UnZip version <= 6.00 ...
CVE-2018-1000034An out-of-bounds read exists in Info-Zip UnZip version 6.10c22 that al ...
CVE-2018-1000033An out-of-bounds read exists in Info-Zip UnZip version 6.10c22 that al ...
CVE-2018-1000032A heap-based buffer overflow exists in Info-Zip UnZip version 6.10c22 ...
CVE-2018-1000031A heap-based buffer overflow exists in Info-Zip UnZip version 6.10c22 ...
CVE-2018-18384Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive ...
CVE-2016-9844Buffer overflow in the zi_short function in zipinfo.c in Info-Zip UnZi ...
CVE-2015-7697Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of servic ...
CVE-2015-7696Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of servic ...
CVE-2015-1315Buffer overflow in the charset_to_intern function in unix/unix.c in In ...
CVE-2014-9913Buffer overflow in the list_files function in list.c in Info-Zip UnZip ...
CVE-2014-9636unzip 6.0 allows remote attackers to cause a denial of service (out-of ...
CVE-2014-8141Heap-based buffer overflow in the getZip64Data function in Info-ZIP Un ...
CVE-2014-8140Heap-based buffer overflow in the test_compr_eb function in Info-ZIP U ...
CVE-2014-8139Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip ...
CVE-2008-0888The NEEDBITS macro in the inflate_dynamic function in inflate.c for un ...
CVE-2005-4667Buffer overflow in UnZip 5.50 and earlier allows user-assisted attacke ...
CVE-2005-2475Race condition in Unzip 5.52 allows local users to modify permissions ...
CVE-2005-0602Unzip 5.51 and earlier does not properly warn the user when extracting ...
CVE-2003-0282Directory traversal vulnerability in UnZip 5.50 allows attackers to ov ...

Security announcements

DSA / DLADescription
DLA-3118-1unzip - security update
DSA-5202-1unzip - security update
DLA-2082-1unzip - security update
DLA-1846-2unzip - regression update
DLA-1846-1unzip - security update
DLA-741-1unzip - security update
DSA-3386-2unzip - regression update
DSA-3386-1unzip - security update
DLA-330-1unzip - security update
DLA-150-1unzip - security update
DSA-3152-1unzip - security update
DSA-3113-1unzip - security update
DLA-124-1unzip - security update
DSA-1522-1unzip - potential code execution
DSA-1012-1unzip - buffer overflow
DSA-903-1unzip - race condition
DSA-344unzip - directory traversal
Search for package or bug name: Reporting problems