FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 05:42:14 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
86c3c66e-b2f5-11e5-863a-b499baebfeaf	unzip -- multiple vulnerabilities Gustavo Grieco reports: Two issues were found in unzip 6.0: * A heap overflow triggered by unzipping a file with password (e.g unzip -p -P x sigsegv.zip). * A denegation of service with a file that never finishes unzipping (e.g. unzip sigxcpu.zip). Discovery 2015-09-26 Entry 2016-01-04 unzip < 6.0_7 http://www.openwall.com/lists/oss-security/2015/09/07/4 ports/204413 CVE-2015-7696 CVE-2015-7697

VuXML ID

Description

86c3c66e-b2f5-11e5-863a-b499baebfeaf

unzip -- multiple vulnerabilities

Gustavo Grieco reports:

Two issues were found in unzip 6.0:

* A heap overflow triggered by unzipping a file with password (e.g unzip -p -P x sigsegv.zip).

* A denegation of service with a file that never finishes unzipping (e.g. unzip sigxcpu.zip).

Discovery 2015-09-26
Entry 2016-01-04
unzip

< 6.0_7

http://www.openwall.com/lists/oss-security/2015/09/07/4
ports/204413
CVE-2015-7696
CVE-2015-7697