622380 – (CVE-2012-6706) [TRACKER] Vulnerable to VMSF_DELTA Filter Signedness Error through embedded UnRAR version (CVE-2012-6706)

Bug 622380 (CVE-2012-6706) - [TRACKER] Vulnerable to VMSF_DELTA Filter Signedness Error through embedded UnRAR version (CVE-2012-6706)

Summary: [TRACKER] Vulnerable to VMSF_DELTA Filter Signedness Error through embedded U...

Status:	RESOLVED FIXED

Alias:	CVE-2012-6706

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://bugs.chromium.org/p/project-z...
Whiteboard:
Keywords:	Tracker

Depends on:	622342 622382 622384 623534 649328
Blocks:
	Show dependency tree

Reported:	2017-06-21 12:03 UTC by Thomas Deutschmann (RETIRED)
Modified:	2018-04-22 22:41 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Deutschmann (RETIRED) gentoo-dev

2017-06-21 12:03:47 UTC

See also bug 622342 regarding the upstream VMSF_DELTA Filter Signedness Error in UnRAR vulnerability reported at ${URL}. As pointed out in ${URL} several packages contains embedded copies of this code.

As such we ask maintainers with packages suspected to be vulnerable to verify if the package is (or have been) affected.

Comment 1 Aaron Bauman (RETIRED) gentoo-dev

2018-04-22 22:41:13 UTC

Dependent bugs closed.