Overview

File _patchinfo of Package patchinfo.3645

<patchinfo incident="3645">
  <issue id="923240" tracker="bnc">VUL-0: CVE-2015-2331: libzip: ZIP Integer Overflow leads to writing past heap boundary</issue>
  <issue id="CVE-2015-2331" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>Libzip was updated to fix one security issue.

A zip file with an unusually large number of entries could have caused an integer overflow leading to a write past the heap boundary, crashing the application. (CVE-2015-2331 bnc#923240)
</description>
  <summary>Security update for libzip</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places