CVE-2016-1541 (retired)

Priority
Description
Heap-based buffer overflow in the zip_read_mac_metadata function in
archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote
attackers to execute arbitrary code via crafted entry-size values in a ZIP
archive.
Assigned-to
mdeslaur
Package
Upstream:released (3.2.0)
Ubuntu 14.04 LTS (Trusty Tahr):released (3.1.2-7ubuntu2.2)
Ubuntu 16.04 LTS (Xenial Xerus):released (3.1.2-11ubuntu0.16.04.1)
Patches:
Upstream:https://github.com/libarchive/libarchive/commit/d0331e8e5b05b475f20b1f3101fe1ad772d7e7e7
More Information

Updated: 2019-03-26 12:18:49 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)