FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

unzip -- heap based buffer overflow in iconv patch

Affected packages
unzip < 6.0_5

Details

VuXML ID 3680b234-b6f0-11e4-b7cc-d050992ecde8
Discovery 2015-02-17
Entry 2015-02-17

Ubuntu Security Notice USN-2502-1 reports:

unzip could be made to run programs if it opened a specially crafted file.

References

CVE Name CVE-2015-1315
URL http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1315.html
URL http://www.ubuntu.com/usn/usn-2502-1/
URL https://security-tracker.debian.org/tracker/CVE-2015-1315