CVE-2015-7697
EPSS 33.0%
Description
Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service (infinite loop) via empty bzip2 data in a ZIP archive.
How to fix CVE-2015-7697
To remediate CVE-2015-7697, upgrade the affected package to a fixed version below.
- Alpine/unzip—upgrade to 6.0-r1 or later
- Debian/unzip—upgrade to 6.0-19 or later
Is CVE-2015-7697 being exploited?
Moderate — EPSS is 33.0%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 6.0-r1
- from 0, < 6.0-19