CVE-2017-12858 log
| Source |
|
| Severity | High |
| Remote | Yes |
| Type | Arbitrary code execution |
| Description | Double free vulnerability in the _zip_dirent_read function in zip_dirent.c in libzip allows attackers to execute arbitrary code via a crafted zip file. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-390 | libzip | 1.2.0-1 | 1.3.0-1 | High | Fixed |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 07 Nov 2017 | ASA-201711-13 | AVG-390 | libzip | High | arbitrary code execution |
| References |
|---|
https://github.com/nih-at/libzip/commit/2217022b7d1142738656d891e00b3d2d9179b796 |