Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 622380 (CVE-2012-6706) - [TRACKER] Vulnerable to VMSF_DELTA Filter Signedness Error through embedded UnRAR version (CVE-2012-6706)
Summary: [TRACKER] Vulnerable to VMSF_DELTA Filter Signedness Error through embedded U...
Status: RESOLVED FIXED
Alias: CVE-2012-6706
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://bugs.chromium.org/p/project-z...
Whiteboard:
Keywords: Tracker
Depends on: 622342 622382 622384 623534 649328
Blocks:
  Show dependency tree
 
Reported: 2017-06-21 12:03 UTC by Thomas Deutschmann
Modified: 2018-04-22 22:41 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Deutschmann gentoo-dev Security 2017-06-21 12:03:47 UTC
See also bug 622342 regarding the upstream VMSF_DELTA Filter Signedness Error in UnRAR vulnerability reported at ${URL}. As pointed out in ${URL} several packages contains embedded copies of this code.

As such we ask maintainers with packages suspected to be vulnerable to verify if the package is (or have been) affected.
Comment 1 Aaron Bauman Gentoo Infrastructure gentoo-dev Security 2018-04-22 22:41:13 UTC
Dependent bugs closed.