Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 27: FEDORA-2018-29232aa760 Critical: P7zip Buffer Overflow

fedora
Calendar Grey February 14, 2018
Dist Fedora Esm H88
An important safety patch for p7zip in Fedora 27 tackles weaknesses with enhanced defenses.
Improved security patch

Summary

p7zip is a port of 7za.exe for Unix. 7-Zip is a file archiver with a very high

compression ratio. The original version can be found at https://7-zip.org/.

Improved security patch

[ 1 ] Bug #1538459 - CVE-2017-17969 p7zip: heap-based buffer overflow in 7zip/Compress/ShrinkDecoder.cpp can allow an attacker to write arbitrary data and cause a crash [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1538459

su -c 'dnf upgrade p7zip' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Topics%20covered

Topics Covered

security advisory fedora update buffer overflow critical security patch p7zip

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 27
Version: 16.02
Release: 10.fc27
URL:
Summary: Very high compression ratio file archiver

Topics%20covered

Topics Covered

security advisory fedora update buffer overflow critical security patch p7zip

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here