Directory traversal vulnerability in ZZIPlib 0.13.69 allows attackers to overwrite arbitrary files via a .. (dot dot) in a zip file, because of the function unzzip_cat in the bins/unzzipcat-mem.c file. Cauldron does not share this vulnerability but is still out of date.
https://github.com/gdraheim/zziplib Here is latest changelog for 0.13.72 tag ================================= …stall the same * The cmake install did need patches for man3 installation on Unix * The cmake install did need patches for dll installation on Windows * The cmake install did need patches for dylib installation on MacOS * The cmake install did need patches for pkgconfig generation * Bump testbuilds to modern distro versions (ubuntu 20.04 centos 7.9 / 8.3) * Takeover docker_mirror.py for air-gap testings (for testbuilds.py) * handle UNZZIP-NOTFOUND in cmake and mark Ubuntu 'unzip' to be broken * merge patches for zzip_pread feature from Max Kellermann * merge patches for some bugs being found and reported via GitHub issues * run azure-pipelines with -DZZIP_TESTCVE=OFF to skip CVE *.zip downloads * use zziptests.py --downloadonly to get the CVE zip files for local storage * The ninja builds for cmake were run regularly as it seems to be widely used. * AND ... rename configure.ac to old.configure.ac to break outdated packaging scripts * ....... see testbuilds/*-am-*.dockerfile that it still works to rename them back !!! The old automake/autconf/libtool system will be dumped soon!!! ============================================================== Also, in 0.13.71 changelog: Many CVE fixes, which? This need an update, clearly. Assigning to registered maintainer.
Source RPM: zziplib-0.13.69-1.mga7.src => zziplib-0.13.69-1.mga7.src.rpmStatus comment: (none) => zziplib-0.13.71-1.mga8.src.rpm is oldWhiteboard: (none) => MGA7TOOCC: (none) => jani.valimaa, ouaurelienAssignee: bugsquad => mageia
QA Contact: (none) => securityComponent: RPM Packages => Security
Already reported and FIXED. *** This bug has been marked as a duplicate of bug 22570 ***
Resolution: (none) => DUPLICATEStatus: NEW => RESOLVED