p7zip: Multiple vulnerabilities (CVE-2017-17969, CVE-2018-5996)
CVE-2017-17969: Heap-based buffer overflow in the
NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and
p7zip allows remote
attackers to cause a denial of service (out-of-bounds write) or
potentially execute arbitrary code via a crafted ZIP archive.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-17969
https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/
CVE-2018-5996: Multiple memory corruption vulnerabilities exist in
7-Zip’s RAR compression handler.
Versions before 18.00 are affected.
References:
https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/
https://nvd.nist.gov/vuln/detail/CVE-2018-5996
(from redmine: issue id 8531, created on 2018-02-21, closed on 2018-08-09)
- Relations:
- child #8532 (closed)
- child #8533 (closed)
- child #8534 (closed)
- child #8536 (closed)
- child #8537 (closed)
- Changesets:
- Revision 916b50fb by Natanael Copa on 2018-08-08T15:13:49Z:
main/p7zip: security fixes (CVE-2018-5996, CVE-2018-10115)
ref #8531