Security update for unrar SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:1658-1 Final 1 1 2017-06-22T18:56:08Z current 2017-06-22T18:56:08Z 2017-06-22T18:56:08Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for unrar This update for unrar to version 5.5 fixes the following issues: Version 5.5.5 * CVE-2012-6706: fixes VMSF_DELTA memory corruption (boo#1045315) see https://bugs.chromium.org/p/project-zero/issues/detail?id=1286&can=1&q=unrar&desc=2 Version 5.5.1 * Based on RAR 5.50 beta1 * Added extraction support for .LZ archives created by Lzip compressor. * Modern TAR tools can store high precision file times, lengthy file names and large file sizes in special PAX extended headers inside of TAR archive. Now WinRAR supports such PAX headers and uses them when extracting TAR archives. * unrar no longer fails to unpack files in ZIP archives compressed with XZ algorithm and encrypted with AES Version 5.4.5. * Based on final RAR 5.40. * If RAR recovery volumes (.rev files) are present in the same folder as usual RAR volumes, archive test command verifies .rev contents after completing testing .rar files. If you wish to test only .rev files without checking .rar volumes, you can run: `unrar t arcname.part1.rev`. * If -p switch is used without optional <pwd> parameter, a password can be also set with file redirection or pipe. * unrar treats 'arcname.partN' as 'arcname.partN.rar' if 'arcname.partN' does not exist and 'arcname.part#.rar' exists. For example, it is allowed to run: `unrar x arcname.part01` to start extraction from 'arcname.part01.rar'. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2017-06/msg00085.html E-Mail link for openSUSE-SU-2017:1658-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.2 NonFree libunrar-devel-5.5.5-3.1 libunrar5_5_5-5.5.5-3.1 unrar-5.5.5-3.1 libunrar-devel-5.5.5-3.1 as a component of openSUSE Leap 42.2 NonFree libunrar5_5_5-5.5.5-3.1 as a component of openSUSE Leap 42.2 NonFree unrar-5.5.5-3.1 as a component of openSUSE Leap 42.2 NonFree A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine before 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative value of the "DestPos" variable, which allows the attacker to write out of bounds when setting Mem[DestPos]. CVE-2012-6706 openSUSE Leap 42.2 NonFree:libunrar-devel-5.5.5-3.1 openSUSE Leap 42.2 NonFree:libunrar5_5_5-5.5.5-3.1 openSUSE Leap 42.2 NonFree:unrar-5.5.5-3.1 critical 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-06/msg00085.html https://www.suse.com/security/cve/CVE-2012-6706.html CVE-2012-6706 https://bugzilla.suse.com/1045315 SUSE Bug 1045315 https://bugzilla.suse.com/1045490 SUSE Bug 1045490 https://bugzilla.suse.com/1051712 SUSE Bug 1051712 https://bugzilla.suse.com/1053919 SUSE Bug 1053919 https://bugzilla.suse.com/1083915 SUSE Bug 1083915