[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2012:034 -- Mandriva libzip

ID: oval:org.secpod.oval:def:302865Date: (C)2012-12-11   (M)2021-06-02
Class: PATCHFamily: unix




Multiple vulnerabilities has been found and corrected in libzip: libzip uses an incorrect loop construct, which can result in a heap overflow on corrupted zip files . libzip has a numeric overflow condition, which, for example, results in improper restrictions of operations within the bounds of a memory buffer . The updated packages have been upgraded to the 0.10.1 version to correct these issues.

Platform:
Mandriva Linux 2011.0
Mandriva Linux 2010.1
Product:
libzip
Reference:
MDVSA-2012:034
CVE-2012-1163
CVE-2012-1162
CVE    2
CVE-2012-1163
CVE-2012-1162
CPE    2
cpe:/o:mandriva:linux:2010.1
cpe:/o:mandriva:linux:2011.0

© SecPod Technologies