CVE-2018-18384 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Project Unzip

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents9 sources

Severity

5.5MEDIUMNVD

EPSS

2.8%

top 13.98%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Unzip Project Unzip

Timeline

PublishedOct 16

Latest updateMay 13

Description

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶Debianunzip_project/unzip< 6.0-11+3

▶NVDunzip_project/unzip6.0

Patches

Patch: bugzilla.suse.com ↗Patch: sourceforge.net ↗Patch: bugzilla.suse.com ↗

🔴Vulnerability Details

GHSA

GHSA-jjvf-xm75-cph5: Info-ZIP UnZip 6↗2022-05-13

▶

OSV

unzip vulnerabilities↗2020-12-16

▶

OSV

CVE-2018-18384: Info-ZIP UnZip 6↗2018-10-16

▶

CVEList

CVE-2018-18384: Info-ZIP UnZip 6↗2018-10-16

▶

📋Vendor Advisories

Ubuntu

unzip vulnerabilities↗2020-12-16

▶

Microsoft

Info-ZIP UnZip 6.0 has a buffer overflow in list.c when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value because a buffer size is 10 and is su↗2018-10-09

▶

Red Hat

unzip: Buffer overflow in list.c resulting in a denial of service↗2018-09-28

▶

Debian

CVE-2018-18384: unzip - Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a cra...↗2018

▶

💬Community

Bugzilla

CVE-2018-18384 unzip: Buffer overflow in list.c resulting in a denial of service↗2018-10-25

▶