Matěj Cepl f29b4b16fa Add CVE-2025-8291-consistency-zip64.patch ...

It checks consistency of the zip64 end of central directory
record, and preventing obfuscation of the payload, i.e., you
scanning for malicious content in a ZIP file with one ZIP parser
(let's say a Rust one) then unpack it in production with another
(e.g., the Python one) and get malicious content that the other
parser did not see (CVE-2025-8291, bsc#1251305)

2025-11-18 22:42:37 +01:00

583 KiB

Raw Blame History

View Raw