ELSA-2020-1178

ULN >
Oracle Linux Errata repository >
ELSA-2020-1178

ELSA-2020-1178 - zziplib security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-04-06

Description

[0.13.62-12]
- Fix a directory traversal bug
- unzip-mem should now strip all '../' prefixes from the archived files
- Resolves: CVE-2018-17828

Related CVEs

CVE-2018-17828

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_aarch64_beta
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_aarch64_latest
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_aarch64_optional_beta
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_aarch64_optional_latest
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_aarch64_u8_base
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_aarch64_u9_base
	zziplib-0.13.62-12.el7.aarch64.rpm	aece89c796514e42e8f7a23a20cdaa7a5a9b9f2f243e95bab86fde4583fe0dd5	-	ol7_aarch64_beta
	zziplib-0.13.62-12.el7.aarch64.rpm	aece89c796514e42e8f7a23a20cdaa7a5a9b9f2f243e95bab86fde4583fe0dd5	-	ol7_aarch64_latest
	zziplib-0.13.62-12.el7.aarch64.rpm	aece89c796514e42e8f7a23a20cdaa7a5a9b9f2f243e95bab86fde4583fe0dd5	-	ol7_aarch64_u8_base
	zziplib-0.13.62-12.el7.aarch64.rpm	aece89c796514e42e8f7a23a20cdaa7a5a9b9f2f243e95bab86fde4583fe0dd5	-	ol7_aarch64_u9_base
	zziplib-devel-0.13.62-12.el7.aarch64.rpm	9544036691f64f623cd0afd7e1311206bc4cd73e161582eaacfac7ba504156bc	-	ol7_aarch64_optional_beta
	zziplib-devel-0.13.62-12.el7.aarch64.rpm	9544036691f64f623cd0afd7e1311206bc4cd73e161582eaacfac7ba504156bc	-	ol7_aarch64_optional_latest
	zziplib-utils-0.13.62-12.el7.aarch64.rpm	fc66061ea14a3f55eb13597cba19099e20a3b30572584ddc2694e22399dfeaa4	-	ol7_aarch64_optional_beta
	zziplib-utils-0.13.62-12.el7.aarch64.rpm	fc66061ea14a3f55eb13597cba19099e20a3b30572584ddc2694e22399dfeaa4	-	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_x86_64_beta
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_x86_64_latest
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_x86_64_optional_latest
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_x86_64_u8_base
	zziplib-0.13.62-12.el7.src.rpm	d06bd96eabef54abfd3b1f00a6e2bdf9f35f7e2b093b1ac1648783af834ab9fc	-	ol7_x86_64_u9_base
	zziplib-0.13.62-12.el7.i686.rpm	ecb609196e8711196737956c168ef691bdb87a7649722fa67ad919e9aa538c8f	-	ol7_x86_64_beta
	zziplib-0.13.62-12.el7.i686.rpm	ecb609196e8711196737956c168ef691bdb87a7649722fa67ad919e9aa538c8f	-	ol7_x86_64_latest
	zziplib-0.13.62-12.el7.i686.rpm	ecb609196e8711196737956c168ef691bdb87a7649722fa67ad919e9aa538c8f	-	ol7_x86_64_u8_base
	zziplib-0.13.62-12.el7.i686.rpm	ecb609196e8711196737956c168ef691bdb87a7649722fa67ad919e9aa538c8f	-	ol7_x86_64_u9_base
	zziplib-0.13.62-12.el7.x86_64.rpm	f54db48603e6962f79f73b12f7d38bb367d4f0871fe9d36afd1350597ea42e1e	-	ol7_x86_64_beta
	zziplib-0.13.62-12.el7.x86_64.rpm	f54db48603e6962f79f73b12f7d38bb367d4f0871fe9d36afd1350597ea42e1e	-	ol7_x86_64_latest
	zziplib-0.13.62-12.el7.x86_64.rpm	f54db48603e6962f79f73b12f7d38bb367d4f0871fe9d36afd1350597ea42e1e	-	ol7_x86_64_u8_base
	zziplib-0.13.62-12.el7.x86_64.rpm	f54db48603e6962f79f73b12f7d38bb367d4f0871fe9d36afd1350597ea42e1e	-	ol7_x86_64_u9_base
	zziplib-devel-0.13.62-12.el7.i686.rpm	e53e0f6d117eea9dfe9ffbdf0fb69de35470d7109764553fc275a1964ba31b4c	-	ol7_x86_64_optional_beta
	zziplib-devel-0.13.62-12.el7.i686.rpm	e53e0f6d117eea9dfe9ffbdf0fb69de35470d7109764553fc275a1964ba31b4c	-	ol7_x86_64_optional_latest
	zziplib-devel-0.13.62-12.el7.x86_64.rpm	695d7ec8b9835932d1645810075f4018d565ad084b4dba1522d27b148d92c04d	-	ol7_x86_64_optional_beta
	zziplib-devel-0.13.62-12.el7.x86_64.rpm	695d7ec8b9835932d1645810075f4018d565ad084b4dba1522d27b148d92c04d	-	ol7_x86_64_optional_latest
	zziplib-utils-0.13.62-12.el7.x86_64.rpm	de73e6f0db131e8c4bcf9afd7fbd8f56a5566bcfb31049090379b963655e28ba	-	ol7_x86_64_optional_beta
	zziplib-utils-0.13.62-12.el7.x86_64.rpm	de73e6f0db131e8c4bcf9afd7fbd8f56a5566bcfb31049090379b963655e28ba	-	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691