Package : zutils Version : 1.3-4+deb8u1 CVE ID : CVE-2018-1000637 Debian Bug : 902936 zutils version prior to version 1.8-pre2 contains a buffer overflow vulnerability in zcat which happened with some input files when the '-v, --show-nonprinting' option was used (or indirectly enabled). This can result in potential denial of service or arbitrary code execution. This attack appear is exploitable via the victim openning a crafted compressed file and has been fixed in 1.8-pre2. For Debian 8 "Jessie", this problem has been fixed in version 1.3-4+deb8u1. We recommend that you upgrade your zutils packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS Regards, Daniel
Debian LTS: DLA-1505-1: zutils security update
September 15, 2018
zutils version prior to version 1.8-pre2 contains a buffer overflow vulnerability in zcat which happened with some input files when the '-v, --show-nonprinting' option was
Summary
For Debian 8 "Jessie", this problem has been fixed in
version 1.3-4+deb8u1.
We recommend that you upgrade your zutils packages.
Further information about Debian LTS security advisories,
how to apply these updates to your system and frequently
asked questions can be found at: https://wiki.debian.org/LTS
Regards,
Daniel
Severity
Package : zutils
Version : 1.3-4+deb8u1
CVE ID : CVE-2018-1000637
Debian Bug : 902936
News
HOWTOs
About Us
Powered By
