CVE-2012-1163

Related Files

Gentoo Linux Security Advisory 201203-23

Posted Mar 29, 2012

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201203-23 - Multiple vulnerabilities have been found in libzip, the worst of which might allow execution of arbitrary code. Versions less than 0.10.1 are affected.

tags | advisory, arbitrary, vulnerability

systems | linux, gentoo

advisories | CVE-2012-1162, CVE-2012-1163

SHA-256 | 3dc6ec677cef70e1de94b2d06ab3401e1e55afa0cbebc37c8c0cb6bceef728e8

Download | Favorite | View

libzip 0.10 Heap Overflow / Information Leak

Posted Mar 28, 2012

Authored by Timo Warns, Thomas Klausner | Site pre-cert.de

libzip versions 0.10 and below suffers from heap overflow and information leak vulnerabilities.

tags | advisory, overflow, vulnerability

advisories | CVE-2012-1162, CVE-2012-1163

SHA-256 | eca7dc942cdc097aced0ed595877bbe9eef5010c995ad730102ab89f12c39a5e

Download | Favorite | View

Mandriva Linux Security Advisory 2012-034

Posted Mar 23, 2012

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-034 - libzip uses an incorrect loop construct, which can result in a heap overflow on corrupted zip files. libzip has a numeric overflow condition, which, for example, results in improper restrictions of operations within the bounds of a memory buffer. The updated packages have been upgraded to the 0.10.1 version to correct these issues.

tags | advisory, overflow

systems | linux, mandriva

advisories | CVE-2012-1162, CVE-2012-1163

SHA-256 | 6db493e438183f4ebbaad7e1c2affd218d766caa412b44524ae35b1ed9cd2a2a

Download | Favorite | View