Bug 2228754 - unzip detects zipbomb when file is generated by Java zip library
Summary: unzip detects zipbomb when file is generated by Java zip library
Keywords:
Status: NEW
Alias: None
Product: Red Hat Enterprise Linux 9
Classification: Red Hat
Component: unzip
Version: CentOS Stream
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: Jakub Martisko
QA Contact: qe-baseos-daemons
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2023-08-03 07:23 UTC by Igor Raits
Modified: 2023-08-03 07:25 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: ---
Doc Text:
Clone Of:
Environment:
Last Closed:
Type: Bug
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHELPLAN-164320 0 None None None 2023-08-03 07:25:53 UTC

Description Igor Raits 2023-08-03 07:23:19 UTC
It would be great to backport https://github.com/madler/unzip/commit/af0d07f95809653b669d88aa0f424c6d5aa48ba0

> Previously the zip64 flag determined the size of the lengths in the
> data descriptor. This is compliant with the zip format. However, a
> bug in the Java zip library results in an incorrect setting of that
> flag. This commit permits either 32-bit or 64-bit lengths, auto-
> detecting which it is, which works around the Java bug.

In our environment, we have hundreds of such ZIP files…


Note You need to log in before you can comment on or make changes to this bug.