Wind River Support Network

HomeDefectsLIN6-9986

Fixed

LIN6-9986 : Security Advisory - unzip - CVE-2014-8139

Created: Jun 11, 2015 Updated: Dec 3, 2018

Resolved Date: Jun 17, 2015

Previous ID: LIN5-20513

Found In Version: 6.0.0.20

Fix Version: 6.0.0.22

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

A correction fix is requested for :
CVE-2014-8139 unzip: CRC32 verification heap-based buffer overread (oCERT-2014-011)

The problem was an unrealistic/invalid value in a .ZIP Extra Field. There was
a check (in extract.c:TestExtraField()) for an extra-block length that was too
large, but no check for a too-small value. In this example, the length
(ebLen) was 1, and when "(ebLen-4)" was passed to crc32(), bad things
happened.

which according to:
http://www.ocert.org/advisories/ocert-2014-011.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8139

Workaround

none

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38