Information on source package p7zip

Available versions

ReleaseVersion
jessie9.20.1~dfsg.1-4.1+deb8u3
stretch16.02+dfsg-3+deb9u1
buster16.02+dfsg-6
bullseye16.02+dfsg-8
bookworm16.02+dfsg-8
trixie16.02+transitional.1
sid16.02+transitional.1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-52168vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedThe NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-11612vulnerablevulnerablevulnerablevulnerablevulnerablefixedfixed7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ...
CVE-2023-52169vulnerablevulnerablevulnerablevulnerablevulnerablefixedfixedThe NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...
CVE-2022-47069vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablep7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerabi ...

Resolved issues

BugDescription
CVE-2024-114777-Zip Zstandard Decompression Integer Underflow Remote Code Execution ...
CVE-2017-17969Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeRe ...
CVE-2016-9296A null pointer dereference bug affects the 16.02 and many old versions ...
CVE-2016-2335The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9 ...
CVE-2016-2334Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZli ...
CVE-2015-1038p7zip 9.20.1 allows remote attackers to write to arbitrary files via a ...
CVE-2008-6536Unspecified vulnerability in 7-zip before 4.5.7 has unknown impact and ...

Security announcements

DSA / DLADescription
DSA-4104-1p7zip - security update
DLA-1268-1p7zip - security update
DLA-510-1p7zip - security update
DSA-3599-1p7zip - security update
DSA-3289-1p7zip - security update
DLA-245-1p7zip - security update

Search for package or bug name: Reporting problems