Security
Security
Multiple vulnerabilities have been discovered in UnZip, the worst of which could lead to code execution.
| Package | app-arch/unzip on all architectures |
|---|---|
| Affected versions | < 6.0_p27 |
| Unaffected versions | >= 6.0_p27 |
Info-ZIP’s UnZip is a tool to list and extract files inside PKZIP compressed files.
Multiple vulnerabilities have been discovered in UnZip. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
All UnZip users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=app-arch/unzip-6.0_p27"
Release date
October 30, 2023
Latest revision
October 30, 2023: 1
Severity
high
Exploitable
local
Bugzilla entries