Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-4217

A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer dereference. This flaw allows an attacker to input a specially crafted zip file, leading to a crash or code execution.

Related bugs and status

CVE-2021-4217 (Candidate) is related to these bugs:

Bug #1957077: SIGSEGV during processing of unicode string

Summary				In	Importance	Status
	1957077	SIGSEGV during processing of unicode string		unzip (Ubuntu)	Low	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://access.redhat....
MISC: https://bugs.launchpad...
MISC: https://bugzilla.redha...