This bug was fixed in the package unzip - 6.0-28ubuntu4.1
---
unzip (6.0-28ubuntu4.1) noble-security; urgency=medium
* SECURITY UPDATE: Null pointer dereference in unzip (LP: #1957077)
- debian/patches/CVE-2021-4217.patch: Fix null pointer dereference and
use of uninitiali
This bug was fixed in the package unzip - 6.0-28ubuntu6
---
unzip (6.0-28ubuntu6) oracular; urgency=medium
* SECURITY UPDATE: Null pointer dereference in unzip (LP: #1957077)
- debian/patches/CVE-2021-4217.patch: Fix null pointer dereference and
use of uninitialized data.
Hi, thanks for the ping, I'll get this fixed in noble and oracular asap!
** Also affects: unzip (Ubuntu Noble)
Importance: Undecided
Status: New
** Also affects: unzip (Ubuntu Oracular)
Importance: Low
Status: Fix Released
** Changed in: unzip (Ubuntu Oracular)
Status:
When will this be fixed in Noble?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957077
Title:
SIGSEGV during processing of unicode string
To manage notifications about this bug go to:
https://bugs
** Changed in: unzip (Ubuntu)
Importance: Undecided => Low
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957077
Title:
SIGSEGV during processing of unicode string
To manage notifications about
** Changed in: unzip (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957077
Title:
SIGSEGV during processing of unicode string
To manage notifications about
According to https://bugzilla.redhat.com/show_bug.cgi?id=2044583 this is
CVE-2021-4217.
** Bug watch added: Red Hat Bugzilla #2044583
https://bugzilla.redhat.com/show_bug.cgi?id=2044583
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-4217
--
You received this bug notificati
The attachment "0001-Fix-null-pointer-dereference-and-use-of-
uninitialized-data.patch" seems to be a patch. If it isn't, please
remove the "patch" flag from the attachment, remove the "patch" tag, and
if you are a member of the ~ubuntu-reviewers, unsubscribe the team.
[This is an automated messa
I attached a fix for the reported issue. However, since I am not
familiar with unzip, someone should review it. Thanks!
** Patch added:
"0001-Fix-null-pointer-dereference-and-use-of-uninitialized-data.patch"
https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1957077/+attachment/5554956/+fil
There is no patch for this issue?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957077
Title:
SIGSEGV during processing of unicode string
To manage notifications about this bug go to:
https://bugs
The attached attachment.zip file contains the bug triggering payload and
a script to reproduce the bug via a prebuilt docker image.
** Attachment removed: "Please extract, this contains the crashing input
besides other files helpful for reproduction."
https://bugs.launchpad.net/ubuntu/+source
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1957077
Title:
SIGSEGV during processing of unicode string
To manage notifications
12 matches
Mail list logo
