I was recently looking at this CVE and CVE 2018 10115.patch.
According to upstream 7-zip [1], this bug was fixed in version 18.05. In
the upstream release announcement, someone asked about variables like
_errorMode that were introduced earlier to deal with CVE-2018-5996 [2]
and how they had be
Source: p7zip-rar
Version: 16.02-1
Severity: grave
Tags: security upstream
Hi,
The following vulnerability was published for p7zip-rar.
CVE-2018-10115[0]:
| Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03
| and before can lead to usage of uninitialized memory, allowing remot
2 matches
Mail list logo
