UbuntuUpdates.org

Package "rzip"

Name: rzip

Description:

compression program for large files

Latest version: 2.1-2ubuntu0.16.04.1
Release: xenial (16.04)
Level: updates
Repository: universe
Homepage: http://rzip.samba.org/

Links


Download "rzip"


Other versions of "rzip" in Xenial

Repository Area Version
base universe 2.1-2
security universe 2.1-2ubuntu0.16.04.1

Changelog

Version: 2.1-2ubuntu0.16.04.1 2018-11-29 21:06:50 UTC

  rzip (2.1-2ubuntu0.16.04.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Heap buffer overflow (integer overflow)
    - debian/patches/CVE-2017-8364.patch: Fix heap buffer overflow by
      allocating a large enough bufferPatch taken from the OpenSUSE leap
      42.2 package.
    - CVE-2017-8364

 -- Mike Salvatore <email address hidden> Thu, 29 Nov 2018 12:21:05 -0500

CVE-2017-8364 The read_buf function in stream.c in rzip 2.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash)



About   -   Send Feedback to @ubuntu_updates