ubuntu/+source/unzip:applied/debian/wheezy

Last commit made on 2016-04-02
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/ubuntu/+source/unzip
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:ubuntu/+source/unzip

Recent commits

e592735... by Salvatore Bonaccorso on 2015-11-09

Import patches-applied version 6.0-8+deb7u5 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 42fe7e3e4c068756b62a06b3efbcd043e911f131
Unapplied parent: 817678b9758a91a672564deb84bb1425cdcd8262

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Update 16-fix-integer-underflow-csiz-decrypted patch.
    Fix regression in handling 0-byte files. (Closes: #804595)
   * Non-maintainer upload by the Security Team.
   * Fix infinite loop when extracting password-protected archive.
     This is CVE-2015-7697. Closes: #802160.
   * Fix heap overflow when extracting password-protected archive.
     This is CVE-2015-7696. Closes: #802162.
   * Fix additional unsigned overflow on invalid input.

817678b... by Salvatore Bonaccorso on 2015-11-09

[PATCH] extract: prevent unsigned overflow on invalid input

Gbp-Pq: 16-fix-integer-underflow-csiz-decrypted.

1fd9476... by Salvatore Bonaccorso on 2015-11-09

fix infinite loop when extracting empty bzip2 data

Gbp-Pq: 15-cve-2015-7697.

f111b8c... by Salvatore Bonaccorso on 2015-11-09

Upstream fix for heap overflow

Gbp-Pq: 14-cve-2015-7696.

718acb8... by Salvatore Bonaccorso on 2015-11-09

Info-ZIP UnZip buffer overflow

Gbp-Pq: 12-cve-2014-9636-test-compr-eb.

4683e26... by Salvatore Bonaccorso on 2015-11-09

Fix CVE-2014-8141: out-of-bounds read issues in getZip64Data()

Gbp-Pq: 11-cve-2014-8141-getzip64data.

f4f0ce8... by Salvatore Bonaccorso on 2015-11-09

Fix CVE-2014-8140: out-of-bounds write issue in test_compr_eb()

Gbp-Pq: 10-cve-2014-8140-test-compr-eb.

5d18e9d... by Salvatore Bonaccorso on 2015-11-09

Fix CVE-2014-8139: CRC32 verification heap-based overflow

Gbp-Pq: 09-cve-2014-8139-crc-overflow.

55f3103... by Salvatore Bonaccorso on 2015-11-09

Restore uid and gid information when requested

Gbp-Pq: 05-fix-uid-gid-handling.

929f849... by Salvatore Bonaccorso on 2015-11-09

Handle the PKWare verification bit of internal attributes

Gbp-Pq: 04-handle-pkware-verification-bit.