{"id":"CLSA-2026-1778132770","summary":"unzip: Fix of 2 CVEs","details":"- CVE-2022-0529: fix heap-based buffer overflow in wide_to_local_string\n- CVE-2022-0530: fix null pointer dereference on invalid UTF-8 input","modified":"2026-05-27T11:18:14.799758485Z","published":"2026-05-07T08:06:32Z","upstream":["CVE-2022-0529","CVE-2022-0530"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1778132770.html"}],"affected":[{"package":{"name":"unzip","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/unzip?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.0-58.el9_6.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778132770.json"}}],"schema_version":"1.7.5"}