CVE-2018-1000031

Published: 09 February 2018

A heap-based buffer overflow exists in Info-Zip UnZip version 6.10c22 that allows an attacker to perform a denial of service or to possibly achieve code execution.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
unzip
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable
(see note)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(see note)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(see note)