Information on source package unrar-nonfree

Available versions

ReleaseVersion
jessie/non-free1:5.2.7-0.1+deb8u1
stretch/non-free1:5.6.6-1+deb9u2
buster/non-free1:5.6.6-1+deb10u4
bullseye/non-free1:6.0.3-1+deb11u3
bookworm/non-free1:6.2.6-1+deb12u1
trixie/non-free1:7.1.2-3
sid/non-free1:7.1.2-3

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-33899vulnerablevulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA, ignored)fixedfixedRARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attacke ...
CVE-2023-40477vulnerablefixedfixedfixedfixedfixedfixedRARLAB WinRAR Recovery Volume Improper Validation of Array Index Remot ...
CVE-2022-48579vulnerablefixedfixedfixedfixedfixedfixedUnRAR before 6.2.3 allows extraction of files outside of the destinati ...
CVE-2022-30333vulnerablefixedfixedfixedfixedfixedfixedRARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal ...
CVE-2018-25018vulnerablefixedfixedfixedfixedfixedfixedUnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write durin ...
CVE-2017-20006vulnerablefixedfixedfixedfixedfixedfixedUnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack:: ...
CVE-2017-12942vulnerable (no DSA)fixedfixedfixedfixedfixedfixedlibunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack:: ...
CVE-2017-12941vulnerable (no DSA)fixedfixedfixedfixedfixedfixedlibunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpa ...
CVE-2017-12940vulnerable (no DSA)fixedfixedfixedfixedfixedfixedlibunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Enco ...
CVE-2017-12938vulnerable (no DSA)fixedfixedfixedfixedfixedfixedUnRAR before 5.5.7 allows remote attackers to bypass a directory-trave ...

Resolved issues

BugDescription
TEMP-0774171-B2A845symlink directory traversal
CVE-2012-6706A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, a ...
CVE-2007-3726Integer signedness error in the SET_VALUE function in rarvm.cpp in unr ...
CVE-2007-0855Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR an ...

Security announcements

DSA / DLADescription
ELA-939-1unrar-nonfree - security update
DLA-3542-1unrar-nonfree - security update
DLA-3535-1unrar-nonfree - security update
ELA-921-1unrar-nonfree - security update
DLA-1003-1unrar-nonfree - security update

Search for package or bug name: Reporting problems