CVE-2016-2334

Heap-based buffer overflow in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7zip before 16.00 and p7zip allows remote attackers to execute arbitrary code via a crafted HFS+ image.

Date published : 2016-12-13

http://www.securityfocus.com/bid/90531

http://www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html