CVE-2016-1541

Priority
Description
Heap-based buffer overflow in the zip_read_mac_metadata function in
archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote
attackers to execute arbitrary code via crafted entry-size values in a ZIP
archive.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (3.2.0)
Ubuntu 14.04 ESM (Trusty Tahr):released (3.1.2-7ubuntu2.2)
Ubuntu 16.04 LTS (Xenial Xerus):released (3.1.2-11ubuntu0.16.04.1)
Patches:
Upstream:https://github.com/libarchive/libarchive/commit/d0331e8e5b05b475f20b1f3101fe1ad772d7e7e7
More Information

Updated: 2020-09-10 04:59:47 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)