VDB

RHSA-2003%3A199

RHSA-2003%3A199 PUBLISHED

Updated unzip packages resolving a vulnerability allowing arbitrary files to be overwritten are now available. [Updated 15 August 2003] Ben Laurie found that the original patch to fix this issue missed a case where the path component included a quoted slash. These updated packages contain a new patch that corrects this issue.

Affected Products

VendorProductVersions
Red Hat Linux 9
Red Hat Linux 7.3
Red Hat Linux 8.0
Red Hat Linux 7.2
Red Hat Linux 7.1

Exploit Intelligence

Timeline

  • Jul 1, 2003 CVE Published
  • Nov 21, 2024 CVE Updated
  • Apr 7, 2026 Distribution Patch
  • Apr 7, 2026 Distribution Patch
  • Apr 7, 2026 Security Advisory
  • Apr 24, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›