Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Mageia 6: MGASA-2019-0093 Critical: ZZIPlib Segmentation Faults

mageia
Calendar Grey February 20, 2019
Dist Mageia Esm H88
MGASA-2019-0093 - Updated zziplib packages fix security vulnerability Publication date: 20 Feb 2019
In ZZIPlib 0.13.67, there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated agains...

Summary

In ZZIPlib 0.13.67, there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated against the amount of file->stored data (CVE-2018-6381).
An unaligned memory access bug was found in the way ZZIPlib handled ZIP files. This flaw could potentially be used to crash the application using ZZIPlib by tricking the application into processing specially crafted ZIP files (CVE-2018-6484).
In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address in the zzip_disk_findfirst function of zzip/mmapped.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file (CVE-2018-6540).
A flaw was found in ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address (when handling disk64_trailer local entries) in __zzip_fetch_disk_trailer (zzip/zip.c). Remote attackers could leverage this vulnerability to cause a denial of servi...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=22570

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/R5NI6QBHJA6ZI7AYP4BYGADTML3F2LNO/

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/T5F2Q7GQYRYWHMTEF2OKBIHBBFV6SZBY/

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/I6J523IVLVVPUEHRDYT54A5QOKM5XVTO/

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/MKVLTCQZTM4IO2OP63CRKPLX6NQKLQ2O/

- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16548

- - - - https://www.cve.org/CVERecord?id=CVE-2018-6381

- https://www.cve.org/CVERecord?id=CVE-2018-6484

- https://www.cve.org/CVERecord?id=CVE-2018-6540

- https://www.cve.org/CVERecord?id=CVE-2018-6541

- https://www.cve.org/CVERecord?id=CVE-2018-6542

- https://www.cve.org/CVERecord?id=CVE-2018-6869

- https://www.cve.org/CVERecord?id=CVE-2018-7725

- https://www.cve.org/CVERecord?id=CVE-2018-7726

- https://www.cve.org/CVERecord?id=CVE-2018-7727

- https://www.cve.org/CVERecord?id=CVE-2018-16548

- https://www.cve.org/CVERecord?id=CVE-2018-17828

Topics%20covered

Topics Covered

security advisory critical DoS memory access segmentation fault Mageia ZZIPlib

Resolution

SRPMS

- 6/core/zziplib-0.13.69-1.mga6

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 20 Feb 2019
URL: https://advisories.mageia.org/MGASA-2019-0093.html
Type: security
CVE: CVE-2018-6381, CVE-2018-6484, CVE-2018-6540, CVE-2018-6541, CVE-2018-6542, CVE-2018-6869, CVE-2018-7725, CVE-2018-7726, CVE-2018-7727, CVE-2018-16548, CVE-2018-17828

Topics%20covered

Topics Covered

security advisory critical DoS memory access segmentation fault Mageia ZZIPlib

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here