Heap-based out-of-bounds access in extract.c:ef_scan_for_stream() function due to missing length check when accessing data was found.
Acknowledgments: Name: R. Freingruber (SEC Consult Vulnerability Lab)
Statement: This issue did not affect the versions of unzip as shipped with Red Hat Enterprise Linux 5, 6, and 7, as they did not include support for ef_scan_for_stream function.
External References: https://www.sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-infozip-unzip/index.html
Created unzip tracking bugs for this issue: Affects: fedora-all [bug 1543337]