Red Hat Errata System 5.3 2008-01-23T07:17:52 Red Hat Enterprise Linux 3 The unzip utility is used to list, test, or extract files from a zip archive. This update addresses the following issues: * a TOCTOU bug that could be exploited to change file permissions (CVE-2005-2475) * a long filename buffer overflow vulnerability (CVE-2005-4667) All users of unzip should upgrade to these updated packages, which resolve these issues. Copyright 2007 Red Hat, Inc. CVE-2005-2475 CVE-2005-4667 cpe://redhat:enterprise_linux:3