Security update for zziplib SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:1210-1 Final 1 1 2017-05-08T11:23:38Z current 2017-05-08T11:23:38Z 2017-05-08T11:23:38Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for zziplib This update for zziplib fixes the following issues: Secuirty issues fixed: - CVE-2017-5974: heap-based buffer overflow in __zzip_get32 (fetch.c) (bsc#1024517) - CVE-2017-5975: heap-based buffer overflow in __zzip_get64 (fetch.c) (bsc#1024528) - CVE-2017-5976: heap-based buffer overflow in zzip_mem_entry_extra_block (memdisk.c) (bsc#1024531) - CVE-2017-5977: invalid memory read in zzip_mem_entry_extra_block (memdisk.c) (bsc#1024534) - CVE-2017-5978: out of bounds read in zzip_mem_entry_new (memdisk.c) (bsc#1024533) - CVE-2017-5979: NULL pointer dereference in prescan_entry (fseeko.c) (bsc#1024535) - CVE-2017-5980: NULL pointer dereference in zzip_mem_entry_new (memdisk.c) (bsc#1024536) - CVE-2017-5981: assertion failure in seeko.c (bsc#1024539) - NULL pointer dereference in main (unzzipcat-mem.c) (bsc#1024532) - NULL pointer dereference in main (unzzipcat.c) (bsc#1024537) This update was imported from the SUSE:SLE-12:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html E-Mail link for openSUSE-SU-2017:1210-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 openSUSE Leap 42.2 libzzip-0-13-0.13.62-10.3.1 libzzip-0-13-32bit-0.13.62-10.3.1 zziplib-0.13.62-10.3.1 zziplib-devel-0.13.62-10.3.1 zziplib-devel-32bit-0.13.62-10.3.1 libzzip-0-13-0.13.62-10.3.1 as a component of openSUSE Leap 42.1 libzzip-0-13-32bit-0.13.62-10.3.1 as a component of openSUSE Leap 42.1 zziplib-0.13.62-10.3.1 as a component of openSUSE Leap 42.1 zziplib-devel-0.13.62-10.3.1 as a component of openSUSE Leap 42.1 zziplib-devel-32bit-0.13.62-10.3.1 as a component of openSUSE Leap 42.1 libzzip-0-13-0.13.62-10.3.1 as a component of openSUSE Leap 42.2 libzzip-0-13-32bit-0.13.62-10.3.1 as a component of openSUSE Leap 42.2 zziplib-0.13.62-10.3.1 as a component of openSUSE Leap 42.2 zziplib-devel-0.13.62-10.3.1 as a component of openSUSE Leap 42.2 zziplib-devel-32bit-0.13.62-10.3.1 as a component of openSUSE Leap 42.2 Heap-based buffer overflow in the __zzip_get32 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file. CVE-2017-5974 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5974.html CVE-2017-5974 https://bugzilla.suse.com/1024517 SUSE Bug 1024517 Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file. CVE-2017-5975 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5975.html CVE-2017-5975 https://bugzilla.suse.com/1024528 SUSE Bug 1024528 Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57, 0.13.56 allows remote attackers to cause a denial of service (crash) via a crafted ZIP file. CVE-2017-5976 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5976.html CVE-2017-5976 https://bugzilla.suse.com/1024531 SUSE Bug 1024531 The zzip_mem_entry_extra_block function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (invalid memory read and crash) via a crafted ZIP file. CVE-2017-5977 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5977.html CVE-2017-5977 https://bugzilla.suse.com/1024534 SUSE Bug 1024534 The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ZIP file. CVE-2017-5978 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5978.html CVE-2017-5978 https://bugzilla.suse.com/1024533 SUSE Bug 1024533 The prescan_entry function in fseeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file. CVE-2017-5979 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate 1.5 AV:L/AC:M/Au:S/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5979.html CVE-2017-5979 https://bugzilla.suse.com/1024535 SUSE Bug 1024535 The zzip_mem_entry_new function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted ZIP file. CVE-2017-5980 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5980.html CVE-2017-5980 https://bugzilla.suse.com/1024536 SUSE Bug 1024536 seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion failure and crash) via a crafted ZIP file. CVE-2017-5981 openSUSE Leap 42.1:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.1:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.1:zziplib-devel-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-0.13.62-10.3.1 openSUSE Leap 42.2:libzzip-0-13-32bit-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-0.13.62-10.3.1 openSUSE Leap 42.2:zziplib-devel-32bit-0.13.62-10.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-05/msg00025.html https://www.suse.com/security/cve/CVE-2017-5981.html CVE-2017-5981 https://bugzilla.suse.com/1024539 SUSE Bug 1024539