Ubuntu
unzip package

lp://staging/ubuntu/lucid-security/unzip

Lucid (10.04)
lucid-security

Created by Ubuntu Package Importer on 2015-01-14 and last modified on 2015-01-29

Get this branch:: bzr branch lp://staging/ubuntu/lucid-security/unzip

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

21. By Marc Deslauriers on 2015-01-29: * SECURITY UPDATE: heap overflow via mismatched block sizes
  - extract.c: ensure compressed and uncompressed block sizes match when
    using STORED method.
  - CVE-2014-9636
20. By Marc Deslauriers on 2015-01-07: * SECURITY UPDATE: CRC32 verification heap-based overflow
  - extract.c: check extra block length.
  - CVE-2014-8139
* SECURITY UPDATE: out-of-bounds write issue in test_compr_eb()
  - extract.c: properly validate sizes.
  - CVE-2014-8140
* SECURITY UPDATE: out-of-bounds read issues in getZip64Data()
  - fileio.c: validate extra fields.
  - process.c: check sizes.
  - CVE-2014-8141
19. By Alexander Sack on 2010-03-07: rebuild rest of main for armel armv7/thumb2 optimization;
UbuntuSpec:mobile-lucid-arm-gcc-v7-thumb2
18. By Santiago Vila on 2009-05-08: * New upstream release. Closes: #496989.
* Enabled new Unicode support. Closes: #197427. This may or may not work
  for your already created zipfiles, but it's not a bug unless they were
  created using the Unicode feature present in zip 3.0.
* Built using DATE_FORMAT=DF_YMD so that unzip -l show dates in ISO format,
  as that's the only available one which makes sense. Closes: #312886.
* Enabled new bzip2 support. Closes: #426798.
* Exit code for zipgrep should now be the right one. Closes: #441997.
* The reason why a file may not be created is now shown. Closes: #478791.
* Summary of changes in this version not being the debian/* files:
- Manpages in section 1, not 1L.
- Branding patch. UnZip by Debian. Original by Info-ZIP.
- Always #include <unistd.h>. Debian GNU/kFreeBSD needs it.
17. By Michael Vogt on 2008-11-12: * Merge from debian unstable, remaining changes:
  - debian/rules: Configure with large file support.
  - unzip.c: Change banner to indicate Ubuntu modification.
  - support UTF-8 file names.
16. By Matthias Klose on 2008-06-25: * Merge with Debian; remaining changes:
  - debian/rules: Configure with large file support.
  - unzip.c: Change banner to indicate Ubuntu modification.
  - support UTF-8 file names.
15. By Kees Cook on 2008-03-19: * SECURITY UPDATE: arbitrary code execution via heap corruption.
* inflate.c: fix invalid free() calls, patch from Tavis Ormandy.
* References
CVE-2008-0888
14. By Matthias Klose on 2007-07-17: * Merge with Debian; remaining changes:
  - debian/rules: Configure with large file support.
  - unzip.c: Change banner to indicate Ubuntu modification.
  - support UTF-8 file names.
13. By Matthias Klose on 2007-03-31: Apply patch from https://bugzilla.altlinux.org/long_list.cgi?buglist=4871
to support UTF-8 file names. Ubuntu #10979.
12. By Matthias Klose on 2007-03-05: * Rebuild for changes in the amd64 toolchain.
* Set Ubuntu maintainer address.

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp://staging/ubuntu/vivid/unzip

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntuunzip package