Explore top 10 tips to secure your open-source projects now. Read More
×
Date: Tue, 18 Mar 2008 16:35:29 -0500 Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for unzip on SL3.x i386/x86_64 Comments: To: " This email address is being protected from spambots. You need JavaScript enabled to view it. "Synopsis: Moderate: unzip security update Issue date: 2008-03-18 CVE Names: CVE-2008-0888 An invalid pointer flaw was found in unzip. If a user ran unzip on a specially crafted file, an attacker could execute arbitrary code with that user's privileges. (CVE-2008-0888) SL 3.0.x SRPMS: unzip-5.50-36.EL3.src.rpm i386: unzip-5.50-36.EL3.i386.rpm x86_64: unzip-5.50-36.EL3.x86_64.rpm -Connie Sieh -Troy Dawson