Synopsis: Moderate: unzip security update
Issue date: 2008-03-18
CVE Names: CVE-2008-0888
An invalid pointer flaw was found in unzip. If a user ran unzip on a
specially crafted file, an attacker could execute arbitrary code with that
user's privileges. (CVE-2008-0888)
SL 3.0.x
SRPMS:
unzip-5.50-36.EL3.src.rpm
i386:
unzip-5.50-36.EL3.i386.rpm
x86_64:
unzip-5.50-36.EL3.x86_64.rpm
-Connie Sieh
-Troy Dawson