This bug was fixed in the package unzip - 6.0-19ubuntu2
---
unzip (6.0-19ubuntu2) xenial; urgency=medium
* debian/patches/16-fix-integer-underflow-csiz-decrypted: updated to fix
regression in handling 0-byte files (LP: #1513293)
-- Marc Deslauriers Mon, 09 Nov 2015
08:51:17
** Changed in: unzip (Ubuntu Precise)
Importance: Undecided => High
** Changed in: unzip (Ubuntu Trusty)
Importance: Undecided => High
** Changed in: unzip (Ubuntu Vivid)
Importance: Undecided => High
** Changed in: unzip (Ubuntu Wily)
Importance: Undecided => High
--
You received
This bug was fixed in the package unzip - 6.0-4ubuntu2.5
---
unzip (6.0-4ubuntu2.5) precise-security; urgency=medium
* debian/patches/16-fix-integer-underflow-csiz-decrypted: updated to fix
regression in handling 0-byte files (LP: #1513293)
-- Marc Deslauriers Mon, 09 Nov 20
This bug was fixed in the package unzip - 6.0-9ubuntu1.5
---
unzip (6.0-9ubuntu1.5) trusty-security; urgency=medium
* debian/patches/16-fix-integer-underflow-csiz-decrypted: updated to fix
regression in handling 0-byte files (LP: #1513293)
-- Marc Deslauriers Mon, 09 Nov 201
This bug was fixed in the package unzip - 6.0-17ubuntu1.2
---
unzip (6.0-17ubuntu1.2) wily-security; urgency=medium
* debian/patches/16-fix-integer-underflow-csiz-decrypted: updated to fix
regression in handling 0-byte files (LP: #1513293)
-- Marc Deslauriers Mon, 09 Nov 201
This bug was fixed in the package unzip - 6.0-13ubuntu3.2
---
unzip (6.0-13ubuntu3.2) vivid-security; urgency=medium
* debian/patches/16-fix-integer-underflow-csiz-decrypted: updated to fix
regression in handling 0-byte files (LP: #1513293)
-- Marc Deslauriers Mon, 09 Nov 20
Thanks, I can reproduce the issue with the zipfile in attachment #13.
The issue is caused by the 16-fix-integer-underflow-csiz-decrypted patch
breaking support for 0-byte files because "if (csiz_decrypted <= 12)"
should be "if (csiz_decrypted < 12)".
I'll prepare a regression fix. Thanks!
** Als
I created the attached zip file containing a new svn repo. The password
to this archive is UnzipBug.
On my computer I found that unzip gave up as reported. I then reverted
as instructed by Seth and found that the problem did not appear.
I hope the problem is reproducible.
** Attachment added: "U
Owen, thanks; any chance you could create a new svn repo, do whatever it
is you do to create the zip file, and see if that recreates the issue?
We can't find a zip file that demonstrates any issues and having one
would help.
Thanks
--
You received this bug notification because you are a member o
Well, that was quite easy. After I reverted unzip, I successfully
extracted the code base, and checked out the most recent revision.
Thumbs up!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1513293
T
Thanks Seth. I'll give it a go, and hopefully I'll get back with the
news we're both hoping for...
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1513293
Title:
unzip security update leads to extract
Owen, to see which versions of unzip can be easily installed, run: apt-
cache show unzip | grep ^Version
Then use apt-get install unzip=version --- replace the "version" with an
older version number.
On my system it looks like:
$ apt-cache show unzip | grep ^Version
Version: 6.0-9ubuntu1.4
Versio
Ummm... it looks like a novice needs someone to hold his hand...
I tried to find out how to revert to an earlier version, but I have had
no luck as yet. I would like to do what Sebastien asked of me, but I
want to tread carefully so as not to break my Ubuntu. I imagine that
very few things would f
** Tags added: regression-update
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1513293
Title:
unzip security update leads to extracting errors
To manage notifications about this bug go to:
https://
Thanks for reporting this issue.
Is anyone able to give me an example of a problematic zip file, either
in this bug, or in private?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1513293
Title:
unzi
** Summary changed:
- unzip security update leads extracting errors
+ unzip security update leads to extracting errors
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1513293
Title:
unzip security up
16 matches
Mail list logo
