ubuntu/+source/unzip:applied/debian/jessie

Last commit made on 2017-05-07
Get this branch:
git clone -b applied/debian/jessie https://git.launchpad.net/ubuntu/+source/unzip
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/jessie
Repository:
lp:ubuntu/+source/unzip

Recent commits

fa5f650... by Santiago Vila on 2017-01-28

Import patches-applied version 6.0-16+deb8u3 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 9a47628565eb9a88775242fb98b1b1ab28c3b7fc
Unapplied parent: 2f63e334c715304bf131c9ced7e5aae36234499c

New changelog entries:
  * Update patch 12-cve-2014-9636-test-compr-eb to follow revised
    patch "unzip-6.0_overflow3.diff" from mancha (patch author).
  * Fix CVE-2014-9913, buffer overflow in unzip. Closes: #847485.
    Patch by the author.
  * Fix CVE-2016-9844, buffer overflow in zipinfo. Closes: #847486.
    Patch by the author.

2f63e33... by Santiago Vila on 2017-01-28

Fix CVE-2016-9844, buffer overflow in zipinfo

Gbp-Pq: 19-cve-2016-9844-zipinfo-buffer-overflow.

75cef6f... by Santiago Vila on 2017-01-28

Fix CVE-2014-9913, buffer overflow in unzip

Gbp-Pq: 18-cve-2014-9913-unzip-buffer-overflow.

1ed4fb0... by Santiago Vila on 2017-01-28

[PATCH] extract: prevent unsigned overflow on invalid input

Gbp-Pq: 16-fix-integer-underflow-csiz-decrypted.

0242162... by Santiago Vila on 2017-01-28

fix infinite loop when extracting empty bzip2 data

Gbp-Pq: 15-cve-2015-7697.

11ef725... by Santiago Vila on 2017-01-28

Upstream fix for heap overflow

Gbp-Pq: 14-cve-2015-7696.

9ff474c... by Santiago Vila on 2017-01-28

Info-ZIP UnZip buffer overflow

Gbp-Pq: 12-cve-2014-9636-test-compr-eb.

df2cf55... by Santiago Vila on 2017-01-28

Fix CVE-2014-8141: out-of-bounds read issues in getZip64Data()

Gbp-Pq: 11-cve-2014-8141-getzip64data.

e9979d5... by Santiago Vila on 2017-01-28

Fix CVE-2014-8140: out-of-bounds write issue in test_compr_eb()

Gbp-Pq: 10-cve-2014-8140-test-compr-eb.

7072341... by Santiago Vila on 2017-01-28

Fix CVE-2014-8139: CRC32 verification heap-based overflow

Gbp-Pq: 09-cve-2014-8139-crc-overflow.