Multiple vulnerabilities have been discovered in UnZip, the worst of which could lead to code execution.
|Package||app-arch/unzip on all architectures|
|Affected versions||< 6.0_p27|
|Unaffected versions||>= 6.0_p27|
Info-ZIP’s UnZip is a tool to list and extract files inside PKZIP compressed files.
Multiple vulnerabilities have been discovered in UnZip. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
All UnZip users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-arch/unzip-6.0_p27"
October 30, 2023
October 30, 2023: 1