It was found that unziping a specially crafted zip file results in a computation of an invalid pointer and a crash reading an invalid address. Crash report with reproducer can be found here: http://seclists.org/oss-sec/2015/q4/158
Created busybox tracking bugs for this issue: Affects: fedora-all [bug 1276428]
Upstream patch: http://git.busybox.net/busybox/commit/?id=1de25a6e87e0e627aa34298105a3d17c60a1f44e