Advertisement

Linux Plumbers Conference

September 17-19 2008, Portland, OR - Buffers, bootloaders, brew pubs, and bicycles

Create an account

Subscribe to LWN

Interview: Kristen Carlson Accardi

LWN.net Weekly Edition for July 24, 2008

Tracing: no shortage of options

Interview: Wind River's John Bruggeman

LWN.net Weekly Edition for July 17, 2008

Weekly edition	Kernel	Security	Distributions	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ

unarj: buffer overflow vulnerability

Package(s):

unarj

CVE #(s):

CAN-2004-0947

Created:

November 11, 2004

Updated:

February 2, 2005

Description:

The unarj uncompression utility has a buffer overflow vulnerability from handling long file names in an archive. An attacker can cause unarj to crash or execute arbitrary code.

Alerts:

Fedora	FEDORA-2004-414	2004-11-11
Gentoo	200411-29	2004-11-19
Red Hat	RHSA-2005:007-01	2005-01-12
Debian	DSA-652-1	2005-01-21
Fedora-Legacy	FLSA:2272	2005-02-01

(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.