-
-
Notifications
You must be signed in to change notification settings - Fork 236
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Multiple Memory Corruptions via RAR and ZIP in 7-Zip #130
Comments
Thanks for the tip! Taking a look now. Keka uses unrar from RAR files, so no problem there. |
Thanks for enquiring! |
The zip overflow is fixed: https://sourceforge.net/p/p7zip/bugs/204 Keka 1.0.13 coming today (or tomorrow 😅) |
Will close this one when the RAR part is also fixed, even if it does not affect Keka. |
In this one CVE-2017-17969 was fixed and CVE-2018-5996, that does not directly affect Keka, remained. |
User Lasse via mail advised about CVE-2018-10115 that also affects RAR format on p7zip, so does not directly affect Keka either. |
https://landave.io/2018/01/7-zip-multiple-memory-corruptions-via-rar-and-zip/?hn
fyi in case Keka is affected in part of completely by those vulnerabilities?!
The text was updated successfully, but these errors were encountered: