1
Candidate: CVE-2016-2335
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2335
5
http://www.talosintel.com/reports/TALOS-2016-0094/
7
The CInArchive::ReadFileItem method in Archive/Udf/UdfIn.cpp in 7zip 9.20
8
and 15.05 beta and p7zip allows remote attackers to cause a denial of
9
service (out-of-bounds read) or execute arbitrary code via the PartitionRef
10
field in the Long Allocation Descriptor in a UDF file.
14
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=824160
20
upstream_p7zip: released (15.14.1+dfsg-2)
21
precise_p7zip: released (9.20.1~dfsg.1-4+deb7u2build0.12.04.1)
22
precise/esm_p7zip: DNE (precise was released [9.20.1~dfsg.1-4+deb7u2build0.12.04.1])
23
trusty_p7zip: released (9.20.1~dfsg.1-4+deb7u2build0.14.04.1)
24
vivid/stable-phone-overlay_p7zip: DNE
25
vivid/ubuntu-core_p7zip: DNE
26
wily_p7zip: ignored (reached end-of-life)
28
yakkety_p7zip: not-affected (15.14.1+dfsg-2)
29
zesty_p7zip: not-affected (15.14.1+dfsg-2)
30
artful_p7zip: not-affected (15.14.1+dfsg-2)
31
bionic_p7zip: not-affected (15.14.1+dfsg-2)
32
devel_p7zip: not-affected (15.14.1+dfsg-2)