138230 – buffer overflow when creating archive containing very long filenames.

Bug 138230 - buffer overflow when creating archive containing very long filenames.

Summary: buffer overflow when creating archive containing very long filenames.

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	zip
Sub Component:
Version:	2
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	low
Target Milestone:	---
Assignee:	Lon Hohberger
QA Contact:	Ben Levenson
Docs Contact:
URL:
Whiteboard:	public=20041103,impact=low
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2004-11-05 21:22 UTC by Josh Bressers
Modified:	2007-11-30 22:10 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2004-11-09 00:02:46 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Josh Bressers 2004-11-05 21:22:35 UTC

A buffer overflow has been found in zip which will lead to a buffer
overflow when a user try to create a zip archive which contains very
long filenames.

See:
http://lists.netsys.com/pipermail/full-disclosure/2004-November/028379.html

attachment 106240 [details] contains the fix for this issue.

Comment 1 Josh Bressers 2004-11-05 21:22:54 UTC

This issue should also affect FC3

Comment 2 Josh Bressers 2004-11-06 13:36:14 UTC

The patch in attachment 106249 [details] contains a small fix over the previous
patch.

Comment 3 Lon Hohberger 2004-11-08 16:43:52 UTC

Indeed, it does affect FC-3

Note You need to log in before you can comment on or make changes to this bug.