[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2258-1] zziplib security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : zziplib
Version        : 0.13.62-3+deb8u2
CVE ID         : CVE-2018-6381 CVE-2018-6484 CVE-2018-6540 CVE-2018-6541
                 CVE-2018-6869 CVE-2018-7725 CVE-2018-7726 CVE-2018-16548
Several issues have been fixed in zziplib, a library providing read access on ZIP-archives. They are basically all related to invalid memory access and resulting crash or memory leak. 


For Debian 8 "Jessie", these problems have been fixed in version
0.13.62-3+deb8u2.

We recommend that you upgrade your zziplib packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=g+gT
-----END PGP SIGNATURE-----
Reply to: