Synopsis: Low: zziplib security update
Advisory ID: SLSA-2019:2196-1
Issue Date: 2019-08-06
CVE Numbers: CVE-2018-6541
CVE-2018-16548
—
Security Fix(es):
* zziplib: Bus error caused by loading of a misaligned address
inzzip/zip.c (CVE-2018-6541)
* zziplib: Memory leak triggered in the function
__zzip_parse_root_directory in zip.c (CVE-2018-16548)
—
SL7
x86_64
zziplib-0.13.62-11.el7.i686.rpm
zziplib-0.13.62-11.el7.x86_64.rpm
zziplib-devel-0.13.62-11.el7.x86_64.rpm
zziplib-utils-0.13.62-11.el7.x86_64.rpm
zziplib-devel-0.13.62-11.el7.i686.rpm
zziplib-debuginfo-0.13.62-11.el7.i686.rpm
zziplib-debuginfo-0.13.62-11.el7.x86_64.rpm
– Scientific Linux Development Team
