CVE-2014-9913 - log back

CVE-2014-9913 created at 03 Nov 2021 13:40:53
Severity
+ Low
Remote
+ Remote
Type
+ Denial of service
Description
+ A buffer overflow in the list_files function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service (crash) via vectors related to the compression method.
References
+ https://www.openwall.com/lists/oss-security/2016/12/05/13
+ https://www.openwall.com/lists/oss-security/2016/12/05/13
+ https://www.openwall.com/lists/oss-security/2016/12/05/20
+ https://bugs.launchpad.net/ubuntu/+source/unzip/+bug/1643750
+ https://src.fedoraproject.org/rpms/unzip/raw/rawhide/f/0001-Fix-CVE-2016-9844-rhbz-1404283.patch
Notes