Ubuntu Security Notice 4672-1 - Rene Freingruber discovered that unzip incorrectly handled certain specially crafted password protected ZIP archives. If a user or automated system using unzip were tricked into opening a specially crafted zip file, an attacker could exploit this to cause a crash, resulting in a denial of service. Antonio Carista discovered that unzip incorrectly handled certain specially crafted ZIP archives. If a user or automated system using unzip were tricked into opening a specially crafted zip file, an attacker could exploit this to cause a crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Various other issues were also addressed.
a8a4d39eefa2e3b6acfd481a7ac1feef2ae8b8d70e10501df13be1e31d635e61
Gentoo Linux Security Advisory 202003-58 - Multiple vulnerabilities have been found in UnZip, the worst of which could result in the execution of arbitrary code. Versions less than 6.0_p25 are affected.
92611270e60a22117296bbbc344ae4392ba44f64f14e73162c90724d0b0350cc
Slackware Security Advisory - New infozip packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.
2d88d00368cf8928d96abd2e9bbc2443f1a829890ef6abcd2773ac66b75c08a3
InfoZip UnZip versions 6.00 and below and 6.1c22 and below suffer from multiple buffer overflow vulnerabilities.
dac731d2690cb1af2ab661aed3d50c9247b02e31917bc2d087907958bbe12e5e