Bug#838248: unadf: CVE-2016-1243 and CVE-2016-1244

To: submit@bugs.debian.org
Subject: Bug#838248: unadf: CVE-2016-1243 and CVE-2016-1244
From: Luciano Bello <luciano@debian.org>
Date: Sun, 18 Sep 2016 22:42:25 -0400
Message-id: <[🔎] 2043861.ecgy7pR3Mx@box>
Reply-to: Luciano Bello <luciano@debian.org>, 838248@bugs.debian.org

Source: unadf
Version: 0.7.11a-3
Severity: important
Tags: security patch

Hi,

Tuomas Räsänen discovered the following vulnerabilities for unadf.

CVE-2016-1243[0]: stack buffer overflow caused by blindly trusting on pathname 
lengths of archived files.
CVE-2016-1244[1]: execution of unsanitized input

The patch is available here: 
  http://tmp.tjjr.fi/0001-Fix-unsafe-extraction-by-using-mkdir-instead-of-shel.patch

If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-1243
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1243
[1] https://security-tracker.debian.org/tracker/CVE-2016-1244
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1244

Reply to:

Follow-Ups:
- Bug#838248: marked as done (unadf: CVE-2016-1243 and CVE-2016-1244)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: docbook-to-man_2.0.0-35_amd64.changes ACCEPTED into unstable
Next by Date: Processed: severity of 838248 is grave
Previous by thread: docbook-to-man_2.0.0-35_amd64.changes ACCEPTED into unstable
Next by thread: Bug#838248: marked as done (unadf: CVE-2016-1243 and CVE-2016-1244)
Index(es):
- Date
- Thread