Bug 950111 (CVE-2015-7697) - VUL-1: CVE-2015-7697: unzip: DoS with a file that never finishes unzipping
Summary: VUL-1: CVE-2015-7697: unzip: DoS with a file that never finishes unzipping
Status: RESOLVED FIXED
Alias: CVE-2015-7697
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P4 - Low : Minor
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/157607/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-10-13 09:06 UTC by Andreas Stieger
Modified: 2018-12-16 23:48 UTC (History)
4 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
reproducer zip file (516 bytes, application/zip)
2015-10-13 09:06 UTC, Andreas Stieger 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2015-10-13 09:06:02 UTC 
Created attachment 651301 [details]
reproducer zip file

via oss-sec: http://seclists.org/oss-sec/2015/q4/63

    * A denegation of service with a file that never finishes unzipping (e.g.
    unzip sigxcpu.zip).


Use CVE-2015-7697.




References:
https://bugzilla.redhat.com/show_bug.cgi?id=1260944
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7697
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-7697.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7697
Comment 1 Swamp Workflow Management 2015-10-13 22:00:24 UTC 
bugbot adjusting priority
Comment 2 Josef Möllers 2016-10-11 14:56:49 UTC 
Taking over from Philipp.
Comment 3 Josef Möllers 2016-10-12 07:46:11 UTC 
request id 434456
Comment 4 Josef Möllers 2016-10-12 13:39:40 UTC 
SUSE_SLE-12_Update: request ID 122682
SUSE_SLE-11-SP2_Update: request ID 122684
openSUSE_13.2_Update: request ID 434562
Comment 10 Swamp Workflow Management 2016-10-13 18:11:19 UTC 
openSUSE-SU-2016:2529-1: An update that fixes two vulnerabilities is now available.

Category: security (low)
Bug References: 950110,950111
CVE References: CVE-2015-7696,CVE-2015-7697
Sources used:
openSUSE 13.2 (src):    unzip-6.00-26.7.1, unzip-rcc-6.00-26.7.1
Comment 11 Marcus Meissner 2017-03-03 08:41:30 UTC 
SLES 11 SP2 unzip is not built with -DUSE_BZIP2, so it is not affected directly.

Same seems to be for SLES 12 GA unzip.
Comment 12 Matthias Gerstner 2017-03-06 10:22:29 UTC 
All affected codestreams released. openSUSE comes from SLE. Closing.
Comment 13 Swamp Workflow Management 2017-03-09 08:10:14 UTC 
SUSE-SU-2017:0639-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1013992,1013993,950110,950111
CVE References: CVE-2014-9913,CVE-2015-7696,CVE-2015-7697,CVE-2016-9844
Sources used:
SUSE Linux Enterprise Server 11-SP4 (src):    unzip-6.00-11.17.1
Comment 15 Swamp Workflow Management 2018-10-02 19:16:56 UTC 
SUSE-SU-2018:2978-1: An update that solves 6 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1013992,1013993,1080074,910683,914442,950110,950111
CVE References: CVE-2014-9636,CVE-2014-9913,CVE-2015-7696,CVE-2015-7697,CVE-2016-9844,CVE-2018-1000035
Sources used:
SUSE Linux Enterprise Server 12-SP3 (src):    unzip-6.00-33.8.1
SUSE Linux Enterprise Desktop 12-SP3 (src):    unzip-6.00-33.8.1
Comment 16 Swamp Workflow Management 2018-10-05 19:19:36 UTC 
openSUSE-SU-2018:3043-1: An update that solves 6 vulnerabilities and has one errata is now available.

Category: security (moderate)
Bug References: 1013992,1013993,1080074,910683,914442,950110,950111
CVE References: CVE-2014-9636,CVE-2014-9913,CVE-2015-7696,CVE-2015-7697,CVE-2016-9844,CVE-2018-1000035
Sources used:
openSUSE Leap 42.3 (src):    unzip-6.00-31.3.1, unzip-rcc-6.00-31.3.1