Format: 1.8
Date: Wed, 07 Jan 2015 16:08:29 -0500
Source: unzip
Binary: unzip
Architecture: i386
Version: 6.0-12ubuntu1.1
Distribution: utopic
Urgency: medium
Maintainer: Ubuntu/amd64 Build Daemon <buildd@phianna.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 unzip      - De-archiver for .zip files
Changes:
 unzip (6.0-12ubuntu1.1) utopic-security; urgency=medium
 .
   * SECURITY UPDATE: CRC32 verification heap-based overflow
     - debian/patches/09-cve-2014-8139-crc-overflow: check extra block
       length in extract.c.
     - CVE-2014-8139
   * SECURITY UPDATE: out-of-bounds write issue in test_compr_eb()
     - debian/patches/10-cve-2014-8140-test-compr-eb: properly validate
       sizes in extract.c.
     - CVE-2014-8140
   * SECURITY UPDATE: out-of-bounds read issues in getZip64Data()
     - debian/patches/11-cve-2014-8141-getzip64data: validate extra fields
       in fileio.c, check sizes in process.c.
     - CVE-2014-8141
Checksums-Sha1:
 8e9f0c85b7b9b45a7bd41dda48a96cc1f5e7efb7 156358 unzip_6.0-12ubuntu1.1_i386.deb
Checksums-Sha256:
 ccb69ad9ec6de1c179209659c4b5e88c303484369cb32255a9580aa253c269c6 156358 unzip_6.0-12ubuntu1.1_i386.deb
Files:
 2a4598a850a0ef44f47b8bcad10df184 156358 utils optional unzip_6.0-12ubuntu1.1_i386.deb
Original-Maintainer: Santiago Vila <sanvila@debian.org>