SUSE: 2018:2978-1 Moderate: Unzip Multiple Security Issues

suse

October 2, 2018

An update that solves 6 vulnerabilities and has one errata is now available

Summary

This update for unzip fixes the following security issues: - CVE-2014-9913: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption (bsc#1013993) - CVE-2015-7696: Specially crafted zip files with password protection could trigger a crash and lead to denial of service (bsc#950110) - CVE-2015-7697: Specially crafted zip files could trigger an endless loop and lead to denial of service (bsc#950111) - CVE-2016-9844: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption (bsc#1013992) - CVE-2018-1000035: Prevent heap-based buffer overflow in the processing of password-protected archives that allowed an attacker to perform a denial of service or to possibly achieve code execution (bsc#1080074).

Topics Covered

security advisory moderate denial of service software update unzip SUSE

References

#1013992 #1013993 #1080074 #910683 #914442

#950110 #950111

Cross- CVE-2014-9636 CVE-2014-9913 CVE-2015-7696

CVE-2015-7697 CVE-2016-9844 CVE-2018-1000035

Affected Products:

SUSE Linux Enterprise Server 12-SP3

SUSE Linux Enterprise Desktop 12-SP3

https://www.suse.com/security/cve/CVE-2014-9636.html

https://www.suse.com/security/cve/CVE-2014-9913.html

https://www.suse.com/security/cve/CVE-2015-7696.html

https://www.suse.com/security/cve/CVE-2015-7697.html

https://www.suse.com/security/cve/CVE-2016-9844.html

https://www.suse.com/security/cve/CVE-2018-1000035.html

https://bugzilla.suse.com/1013992

https://bugzilla.suse.com/1013993

https://bugzilla.suse.com/1080074

https://bugzilla.suse.com/910683

https://bugzilla.suse.com/914442

Announcement ID: SUSE-SU-2018:2978-1

Rating: moderate

Topics Covered

security advisory moderate denial of service software update unzip SUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2018:2978-1 Moderate: Unzip Multiple Security Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2018:2978-1 Moderate: Unzip Multiple Security Issues

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!