Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 20: FEDORA-2015-4669 Critical: Mingw Libzip Integer Overflow

fedora
Calendar Grey April 5, 2015
Dist Fedora Esm H88
Fedora Update Notification FEDORA-2015-4669 2015-03-26 16:43:07 Name : mingw-libzip Product : Fedora
Security fix for CVE-2015-2331.

Summary

libzip is a C library for reading, creating, and modifying zip archives. Files

can be added from data buffers, files, or compressed data copied directly from

other zip archives. Changes made without closing the archive can be reverted.

The API is documented by man pages.

Update Information:

Security fix for CVE-2015-2331.

Topics%20covered

Topics Covered

security advisory software update Fedora integer overflow mingw-libzip

Change Log

* Mon Mar 23 2015 Sandro Mani - 0.11.2-3 - CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677) * Sat Jun 7 2014 Fedora Release Engineering - 0.11.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Dec 19 2013 Sandro Mani - 0.11.2-1 - Update to 0.11.2

References


[ 1 ] Bug #1204676 - CVE-2015-2331 libzip: integer overflow when processing ZIP archives https://bugzilla.redhat.com/show_bug.cgi?id=1204676

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update mingw-libzip' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: mingw-libzip
Product: Fedora 20
Version: 0.11.2
Release: 3.fc20
URL: https://libzip.org/
Summary: C library for reading, creating, and modifying zip archives

Topics%20covered

Topics Covered

security advisory software update Fedora integer overflow mingw-libzip

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here