2228754 – unzip detects zipbomb when file is generated by Java zip library

Bug 2228754 - unzip detects zipbomb when file is generated by Java zip library

Summary: unzip detects zipbomb when file is generated by Java zip library

Keywords:
Status:	NEW
Alias:	None
Product:	Red Hat Enterprise Linux 9
Classification:	Red Hat
Component:	unzip
Sub Component:
Version:	CentOS Stream
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	---
Assignee:	Jakub Martisko
QA Contact:	qe-baseos-daemons
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2023-08-03 07:23 UTC by Igor Raits
Modified:	2023-08-03 07:25 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	---
Doc Text:
Clone Of:
Environment:
Last Closed:
Type:	Bug
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHELPLAN-164320	0	None	None	None	2023-08-03 07:25:53 UTC

Description Igor Raits 2023-08-03 07:23:19 UTC

It would be great to backport https://github.com/madler/unzip/commit/af0d07f95809653b669d88aa0f424c6d5aa48ba0

> Previously the zip64 flag determined the size of the lengths in the
> data descriptor. This is compliant with the zip format. However, a
> bug in the Java zip library results in an incorrect setting of that
> flag. This commit permits either 32-bit or 64-bit lengths, auto-
> detecting which it is, which works around the Java bug.

In our environment, we have hundreds of such ZIP files…

Note You need to log in before you can comment on or make changes to this bug.