CVE-2018-18384

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
VendorProductVersion
unzip_projectunzip
6.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
unzip
bullseye (security)
6.0-26+deb11u1
fixed
bullseye
6.0-26+deb11u1
fixed
sid
6.0-28
fixed
trixie
6.0-28
fixed
bookworm
6.0-28
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
unzip
groovy
not-affected
focal
not-affected
eoan
not-affected
disco
not-affected
cosmic
not-affected
bionic
not-affected
xenial
not-affected
trusty
Fixed 6.0-9ubuntu1.6
released
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00009.html
https://access.redhat.com/errata/RHSA-2019:2159
https://bugzilla.suse.com/show_bug.cgi?id=1110194
https://sourceforge.net/p/infozip/bugs/53/
http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00009.html
https://access.redhat.com/errata/RHSA-2019:2159
https://bugzilla.suse.com/show_bug.cgi?id=1110194
https://sourceforge.net/p/infozip/bugs/53/