What Are You Looking For?

Sign Up

Package        : rzip
Version        : 2.1-2+deb8u1
CVE ID         : CVE-2017-8364


Agostino Sarubbo of Gentoo discovered a heap buffer overflow write in the 
rzip program (a compression program for large files) when uncompressing 
maliciously crafted files.


For Debian 8 "Jessie", this problem has been fixed in version
2.1-2+deb8u1.

We recommend that you upgrade your rzip packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-2189-1: rzip security update

April 26, 2020
Agostino Sarubbo of Gentoo discovered a heap buffer overflow write in the rzip program (a compression program for large files) when uncompressing maliciously crafted files

Summary


For Debian 8 "Jessie", this problem has been fixed in version
2.1-2+deb8u1.

We recommend that you upgrade your rzip packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



Severity
Package : rzip
Version : 2.1-2+deb8u1
CVE ID : CVE-2017-8364

Related News

Python’s New Security Developer Has Plans to Secure the Language

Nov 26, 2023

Beyond the Buffer: Understanding the New Curl Bug and Steps to Secure Your System

Nov 2, 2023

CVE-2023-4911: Looney Tunables – Local Privilege Escalation in the glibc’s ld.so

Oct 19, 2023

Mitigations for Critical c-ares DoS, Code Execution Bug Released

Sep 29, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo