termux-packages/packages/unzip
Leonid Pliushch fe6c4f8171 unzip: apply patches to fix some CVEs
Unzip was not updated from on 20 April 2009 but contain serious
issues already fixed in Linux distributions.

Termux should implement these fixes as well.

This will fix:

 * CVE-2014-8139
 * CVE-2014-8140
 * CVE-2014-8141
 * CVE-2014-9636
 * CVE-2015-7696
 * CVE-2015-7697

Patches were obtained from https://git.archlinux.org/svntogit/packages.git/tree/trunk?h=packages/unzip.
2019-01-13 18:36:38 +01:00
..
bugfix-crc32.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-csiz-underflow.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-cve20149636.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-empty-input.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-getZip64Data.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-nextbyte-overflow.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-overflow-fsize.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
bugfix-test_compr_eb.patch unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
build.sh unzip: apply patches to fix some CVEs 2019-01-13 18:36:38 +01:00
makefile.patch unzip: Use symlink instead of hardlink 2015-07-08 21:09:56 -04:00
unix-configure.patch zip: -Werror=implicit-function-declaration 2017-07-07 09:02:55 +02:00