zziplib-0.13.71-12.el9
エラータID: AXSA:2025-11423:01
The zziplib is a lightweight library to easily extract data from zip files.
Security Fix(es):
* zziplib: directory traversal in unzzip_cat in the bins/unzzipcat-mem.c (CVE-2018-17828)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the MIRACLE LINUX 9 Release Notes linked from the References section.
CVE-2018-17828
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
Update packages.
Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file.
N/A
SRPMS
- zziplib-0.13.71-12.el9.src.rpm
MD5: 4afd4d2806ed7a27e18f9c2ca7118dd9
SHA-256: e68b925264c83225c05dc69870b8ea3c0e41e1618edf5e07c8d13c117ac8eae2
Size: 1.10 MB
Asianux Server 9 for x86_64
- zziplib-0.13.71-12.el9.i686.rpm
MD5: cbc4d8b51581cc311c7b26bf236ed8e4
SHA-256: 88a1a471792c83e526434d789f7c2fafbb80c45b66362abdafcb82fc919147a1
Size: 85.56 kB - zziplib-0.13.71-12.el9.x86_64.rpm
MD5: 4abad1557594cebbe4555457bf79c6cc
SHA-256: 2dae419dddd37e0840ab1f9e814c883c4c6c825c98f7d737d1de15fe38ea7c36
Size: 84.03 kB - zziplib-devel-0.13.71-12.el9.i686.rpm
MD5: 3eaccb63fab04bf54f791d79fb989d28
SHA-256: 47abca70b0b7be28c0e66e09d3679d35de769ad9b5d31895bc12926e0d6f72cc
Size: 197.25 kB - zziplib-devel-0.13.71-12.el9.x86_64.rpm
MD5: 8eae6705f064b1e411a1c9883388c986
SHA-256: ade38784bc4a9d3b84f3e5010548b1d23a8d84497648bfda40191c02b8f0cb6a
Size: 197.18 kB - zziplib-utils-0.13.71-12.el9.x86_64.rpm
MD5: a7ea0dbd1bb4f68fd3e06db2d356ddc7
SHA-256: d7874da34c571954a6287ea8da50033a79428b15e5c264f4926837d2d4bb9816
Size: 39.87 kB
日本語