CVE-2022-0530 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Project Unzip

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-416 — Use After Free CWE-125 — Out-of-bounds Read16 documents9 sources

Severity

5.5MEDIUMNVD

EPSS

0.2%

top 62.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Unzip Project Unzip Apple MAC OS X Apple Macos +3 more

Timeline

PublishedFeb 9

Latest updateOct 13

Description

A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages5 packages

▶Debianunzip_project/unzip< 6.0-26+deb11u1+3

▶CVEListV5unzip_project/unzip6.0

▶NVDunzip_project/unzip6.0

▶NVDapple/macos11.0 — 11.6.6+1

▶NVDapple/mac_os_x10.15 — 10.15.7+1

Also affects: Debian Linux 10.0, 11.0, Fedora 35, Enterprise Linux 8.0

🔴Vulnerability Details

OSV

unzip vulnerabilities↗2022-10-13

▶

GHSA

GHSA-8p3j-58qw-jhp4: A flaw was found in unzip 6↗2022-02-11

▶

CVEList

CVE-2022-0530: A flaw was found in Unzip↗2022-02-09

▶

OSV

CVE-2022-0530: A flaw was found in Unzip↗2022-02-09

▶

📋Vendor Advisories

Ubuntu

unzip vulnerabilities↗2022-10-13

▶

Red Hat

vim: use-after-free in movemark() at mark.c↗2022-09-22

▶

Apple

CVE-2022-0530: macOS Big Sur 11.6.6↗2022-05-16

▶

Apple

CVE-2022-0530: Security Update 2022-004 Catalina↗2022-05-16

▶

Apple

CVE-2018-25032: macOS Big Sur 11.6.6↗2022-05-16

▶