Accepted: unzip 5.52-10ubuntu2 (source)
Kees Cook
kees at ubuntu.com
Fri Mar 21 09:31:20 GMT 2008
Accepted:
OK: unzip_5.52.orig.tar.gz
OK: unzip_5.52-10ubuntu2.diff.gz
OK: unzip_5.52-10ubuntu2.dsc
-> Component: main Section: utils
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 19 Mar 2008 12:08:30 -0700
Source: unzip
Binary: unzip
Architecture: source
Version: 5.52-10ubuntu2
Distribution: hardy
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
unzip - De-archiver for .zip files
Changes:
unzip (5.52-10ubuntu2) hardy; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via heap corruption.
* inflate.c: fix invalid free() calls, patch from Tavis Ormandy.
* References
CVE-2008-0888
Files:
cfc56618c4073388c7f4b52a0287de2c 617 utils optional unzip_5.52-10ubuntu2.dsc
32ac9d42b885da91dc86ee5783d6b425 92158 utils optional unzip_5.52-10ubuntu2.diff.gz
Original-Maintainer: Santiago Vila <sanvila at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFH4XL2H/9LqRcGPm0RAoVPAJ9LN0Wwl+lLuihY9sIindl090a9AgCfRodx
eZysqAmum/oR3k20Ilu9R9U=
=AcJu
-----END PGP SIGNATURE-----
More information about the Hardy-changes
mailing list