- Home
- CVEs with nessus.description==This update for unzip fixes the following issues :
- CVE-2014-9636: Prevent denial of service (out-of-bounds
read or write and crash) via an extra field with an
uncompressed size smaller than the compressed field size
in a zip archive that advertises STORED method
compression (bsc#914442)
- CVE-2018-1000035: Prevent heap-based buffer overflow in
the processing of password-protected archives that
allowed an attacker to perform a denial of service or to
possibly achieve code execution (bsc#1080074)
The update package also includes non-security fixes. See advisory for
details.
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top