aboutsummaryrefslogtreecommitdiff
path: root/contrib/minizip (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Avoid the use of a reserved macro name in contrib/minizip/ioapi.h.Mark Adler2024-09-011-2/+2
|
* Add header file dependencies to contrib/minizip/Makefile.Mark Adler2024-07-311-3/+11
|
* Avoid use of stdint.h in contrib/minizip.Mark Adler2024-07-315-51/+90
|
* Remedy conflict between libzip and minizip zip.h.Mark Adler2024-06-041-1/+1
| | | | | | | | | | | | minizip.pc.in would add @include@/minizip to the include path, which would permit simply #include <zip.h> to use minizip. However that conflicts with the zip.h from libzip that is put in the root include directory. This now does not add /minizip to the include path. Now when using pkg-config, #include <minizip/zip.h> must be used, where #include <zip.h> would be used for libzip. This is an incompatible change with the previous state. Users of minizip and pkg-config will need to update their code. #include <unzip.h> will need to be updated to #include <minizip/unzip.h> as well.
* Replace autotools macro AC_HELP_STRING with AS_HELP_STRING.Matthieu Longo2024-04-291-1/+1
| | | | In minizip's configure.ac. AC_HELP_STRING is obsolete.
* Avert minizip warnings for MSVC.Mark Adler2024-03-295-37/+56
|
* Avoid conversion warning on 32-bit architectures in minizip.Mark Adler2024-03-221-1/+1
|
* Improve detection of UNIX-style systems in minizip.Alexander Miller2024-03-164-11/+5
| | | | | | | | | | | Not all toolchains on UNIX-style operating systems predefine "unix". For example, it's missing on NetBSD, OpenBSD/gcc, AIX, HP-UX. There is no single macro defined everywhere, but checking both "__unix__" and "__unix" should cover everything except macOS, which is already checked for using "__APPLE__". Note that case sensitivity should default to off on macOS and cygwin, so the check there is different.
* Avoid signed shift in minizip zip.c.Mark Adler2024-03-121-1/+1
|
* Improve random number seeding in skipset.h.Mark Adler2024-03-101-1/+2
|
* Add zipAlreadyThere() to minizip zip.c to help avoid duplicates.Mark Adler2024-03-103-10/+612
|
* Permit changing minizip Makefile optimization with CFLAGS.Mark Adler2024-03-091-1/+1
|
* Note termination of returned strings in contrib/minizip/unzip.h.Mark Adler2024-01-231-0/+4
|
* Avoid unterminated file name in contrib/minizip/miniunz.c.Mark Adler2024-01-231-2/+2
|
* Permit compiling contrib/minizip/unzip.c with decryption.Mark Adler2024-01-232-5/+0
|
* Change version number on develop branch to 1.3.1.1.Mark Adler2024-01-221-1/+1
|
* zlib 1.3.1v1.3.1masterMark Adler2024-01-221-1/+1
|
* Use Makefile compiler for minizip-test target.Mark Adler2024-01-211-1/+1
|
* Correct typos in source code.Dimitri Papadopoulos2024-01-171-1/+1
|
* Neutralize zip file traversal attacks in miniunz.Matt Wilson2024-01-171-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | Archive formats such as .zip files are generally susceptible to so-called "traversal attacks". This allows an attacker to craft an archive that writes to unexpected locations of the file system (e.g., /etc/shadow) if an unspecting root user were to unpack a malicious archive. This patch neutralizes absolute paths such as /tmp/moo and deeply relative paths such as dummy/../../../../../../../../../../tmp/moo The Debian project requested CVE-2014-9485 be allocated for the first identified weakness. The fix was incomplete, resulting in a revised patch applied here. Since there wasn't an updated version released by Debian with the incomplete fix, I suggest we use this CVE to identify both issues. Link: https://security.snyk.io/research/zip-slip-vulnerability Link: https://bugs.debian.org/774321 Link: https://bugs.debian.org/776831 Link: https://nvd.nist.gov/vuln/detail/CVE-2014-9485 Reported-by: Jakub Wilk <jwilk@debian.org> Fixed-by: Michael Gilbert <mgilbert@debian.org>
* Fix random typos over several source and text files.THE-Spellchecker2024-01-173-5/+5
|
* Correct case of MSDOS in contrib/minizip/miniunz.c.William Leara2024-01-171-1/+1
|
* Refer to correct function in contrib/minizip/unzip.c comment.William Leara2024-01-171-1/+1
|
* Correct repeated words in source file comments and a readme.Paul Ivanov2023-11-143-5/+5
|
* Fix decision on the emission of Zip64 end records in minizip.Mark Adler2023-11-071-1/+1
| | | | | | | | | | The appnote says that if the number of entries in the end record is 0xffff, then the actual number of entries will be found in the Zip64 end record. Therefore if the number of entries is equal to 0xffff, it can't be in the end record by itself, since that is an instruction to get the number from the Zip64 end record. This code would just store 0xffff in the end record in that case, not making a Zip64 end record. This commit fixes that.
* Update miniunz version.tbeu2023-08-201-1/+1
|
* Reject overflows of zip header fields in minizip.Hans Wennborg2023-08-191-0/+11
| | | | | | | | This checks the lengths of the file name, extra field, and comment that would be put in the zip headers, and rejects them if they are too long. They are each limited to 65535 bytes in length by the zip format. This also avoids possible buffer overflows if the provided fields are too long.
* Change version number on develop branch to 1.3.0.1.Mark Adler2023-08-181-1/+1
|
* zlib 1.3v1.3Mark Adler2023-08-181-1/+1
|
* Avoid uninitialized and unused warnings in contrib/minizip.Mark Adler2023-08-172-2/+8
|
* Remove redundant includes in minizip.Mark Adler2023-08-132-4/+0
|
* Remove TRYFREE macro from minizip.Mark Adler2023-08-132-25/+19
|
* Read multiple bytes instead of byte-by-byte in minizip unzip.c.Eugene Golushkov2023-08-031-96/+38
| | | | | Use a single ZREAD64 call in the unz64local_getShort/Long/Long64 implementation, rather than read it byte by byte.
* Support Haiku in minizip.Gilles Vollant2023-08-034-4/+4
|
* Correct dummy filetime() prototype in minizip.c.Xiang Xiao2023-08-031-1/+1
| | | | Signed-off-by: Xiang Xiao <xiaoxiang@xiaomi.com>
* Match sign of printf directive to sign of argument in minizip.Mark Adler2023-07-291-1/+1
|
* Fix logic error in minizip argument processing.Mark Adler2023-07-291-1/+1
|
* Fix typos found by codespell in minizipDimitri Papadopoulos2023-07-298-36/+36
|
* Fix reading disk number start on zip64 files in minizip.Mark Adler2023-07-291-4/+2
|
* Remove duplicated code #806Gilles Vollant2023-07-291-1/+0
|
* minizip: Fix being unable to open empty zip fileRedworkDE2023-07-291-22/+26
|
* Fix cast in minizip's ioapi.c for Windows.Mark Adler2023-04-171-1/+1
|
* Remove K&R function definitions from contrib/minizip.Mark Adler2023-04-1512-759/+514
|
* Change version number on develop branch to 1.2.13.1.Mark Adler2022-10-151-1/+1
|
* zlib 1.2.13v1.2.13Mark Adler2022-10-121-1/+1
|
* Find other BSD's without *64 functions in contrib/minizip/ioapi.h.Mark Adler2022-10-101-1/+1
|
* Avoid C89 warning in contrib/minizip/crypt.h.Mark Adler2022-10-101-1/+1
|
* Comment out unused code in contrib/minizip/minizip.c.Mark Adler2022-10-091-2/+2
|
* Remove some harmless semicolons in minizip.Mark Adler2022-10-062-2/+2
|
* Security and warning fixes for minizip. [gvollant]Mark Adler2022-10-062-7/+4
| | | | Remove unused code and unnecessary test for free().
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-08-10 01:33:35 +0000