Package: zziplib / 0.13.62-3.2

Metadata

Package Version Patches format
zziplib 0.13.62-3.2 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
remove_extra_z_linking.patch | (download)

zzip/zzip-zlib-config.pc | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 package config file adds extra unneeded -lz
automake compatibility.patch | (download)

configure.ac | 2 1 + 1 - 0 !
zzip/Makefile.am | 2 1 + 1 - 0 !
2 files changed, 2 insertions(+), 2 deletions(-)

 fix compatibility with newer versions of automake
 Since we want to run dh-autoreconf so that the package is always current
 with respect to portability to new architectures, we also need to make sure
 the Makefile.am works with the latest versions of automake.  This requires
 three fixes:
  - fix configure.ac to not set RESOLVES to ' # ', which causes further
    libraries on the line to be commented out
  - fix duplicate references to a header in zzip/Makefile.am
  - fix missing dependency on install-libLTLIBRARIES in the
    install-exec-local target.
zziplib CVE 2017 5974.patch | (download)

zzip/memdisk.c | 10 5 + 5 - 0 !
1 file changed, 5 insertions(+), 5 deletions(-)

---
zziplib CVE 2017 5975.patch | (download)

zzip/memdisk.c | 2 2 + 0 - 0 !
zzip/mmapped.c | 2 2 + 0 - 0 !
2 files changed, 4 insertions(+)

---
zziplib CVE 2017 5976.patch | (download)

zzip/memdisk.c | 10 9 + 1 - 0 !
zzip/memdisk.h | 1 1 + 0 - 0 !
2 files changed, 10 insertions(+), 1 deletion(-)

---
zziplib CVE 2017 5978.patch | (download)

zzip/memdisk.c | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

---
zziplib CVE 2017 5979.patch | (download)

zzip/fseeko.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---
zziplib CVE 2017 5981.patch | (download)

zzip/fseeko.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

---
zziplib unzipcat NULL name.patch | (download)

bins/unzzipcat.c | 18 12 + 6 - 0 !
zzip/fseeko.c | 3 2 + 1 - 0 !
2 files changed, 14 insertions(+), 7 deletions(-)

---
merge CVE 2018 6381.patch from jmoellers 12.patch | (download)

zzip/memdisk.c | 11 11 + 0 - 0 !
1 file changed, 11 insertions(+)

 merge cve-2018-6381.patch from @jmoellers #12
Reject the ZIP file and report it as corrupt if the .patch | (download)

zzip/zip.c | 12 12 + 0 - 0 !
1 file changed, 12 insertions(+)

 reject the zip file and report it as corrupt if the size of the
 central directory and/or the offset of start of central directory point
 beyond the end of the ZIP file. [CVE-2018-6484]
need to check on endbuf for stored files 15.patch | (download)

zzip/mmapped.c | 24 20 + 4 - 0 !
1 file changed, 20 insertions(+), 4 deletions(-)

 need to check on endbuf for stored files #15
check zlib space to be within buffer 39.patch | (download)

zzip/memdisk.c | 8 8 + 0 - 0 !
zzip/mmapped.c | 2 2 + 0 - 0 !
2 files changed, 10 insertions(+)

 check zlib space to be within buffer #39
check rootseek and rootsize to be positive 27.patch | (download)

zzip/zip.c | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 check rootseek and rootsize to be positive #27
check rootseek after correction 41.patch | (download)

zzip/zip.c | 9 6 + 3 - 0 !
1 file changed, 6 insertions(+), 3 deletions(-)

 check rootseek after correction #41
fix for zz_rootsize 41.patch | (download)

zzip/zip.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 fix for zz_rootsize #41
Avoid memory leak from __zzip_parse_root_directory 1.patch | (download)

zzip/zip.c | 36 34 + 2 - 0 !
1 file changed, 34 insertions(+), 2 deletions(-)

 avoid memory leak from __zzip_parse_root_directory().
Avoid memory leak from __zzip_parse_root_directory 2.patch | (download)

zzip/zip.c | 25 2 + 23 - 0 !
1 file changed, 2 insertions(+), 23 deletions(-)

 avoid memory leak from __zzip_parse_root_directory().
One more free to avoid memory leak.patch | (download)

zzip/zip.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 one more free() to avoid memory leak.