[Bug 1581381] [NEW] 7z code execution vulnerabilites
Launchpad Bug Tracker
1581381 at bugs.launchpad.net
Mon May 16 02:50:40 UTC 2016
*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Mathew Hodson (mathew-hodson):
In 7z, multiple security vulnerabilites were discovered, supposedly allowing "in some circumstances … arbitrary code execution": http://www.talosintel.com/reports/TALOS-2016-0093/
p7zip should be updated to include the fixes. Reportedly there is no new release of p7zip yet, so p7zip must be patched manually for now, the patches can be taken from 7zip: https://sourceforge.net/p/p7zip/discussion/383043/thread/9d0fb86b/
** Affects: p7zip (Ubuntu)
Importance: Medium
Status: Fix Released
** Affects: p7zip (Debian)
Importance: Unknown
Status: Unknown
--
7z code execution vulnerabilites
https://bugs.launchpad.net/bugs/1581381
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.
More information about the Ubuntu-sponsors
mailing list