./archivers/unzip [extract, list & test files in a ZIP archive]
[+] Add this package to your ports tracker

[ CVSweb ] [ Homepage ] [ RSS feed ]

Version: 6.0, Package name: unzip-6.0
Maintained by: The OpenBSD ports mailing-list
Master sites:
Flavors (export FLAVOR=xyz, setenv FLAVOR xyz):
  • iconv
Description
Unzip will list, test, or extract files from a ZIP archive, commonly
found on MS-DOS systems. The default behavior (with no options) is to
extract into the current directory (and subdirectories below it) all
files from the specified ZIP archive. Unzip is compatible with
archives created by PKWARE's PKZIP, but in many cases the program
options or default behaviors differ.

Zipinfo lists technical information about files in a ZIP archive, most
commonly found on MS-DOS systems. Such information includes file access
permissions, encryption status, type of compression, version and operating
system or file system of compressing program, and the like.

Funzip acts as a filter; that is, it assumes that a ZIP archive is
being piped into standard input, and it extracts the first member from
the archive to stdout. If there is an argument, then the input comes
from the specified file instead of from stdin.

Unzipsfx is a modified version of unzip designed to be prepended to
existing ZIP archives in order to form self-extracting archives.
Instead of taking its first non-flag argument to be the zipfile(s) to
be extracted, unzipsfx seeks itself under the name by which it was
invoked and tests or extracts the contents of the appended archive.

Available flavors:

iconv Convert charset of filenames


Filesize: 1344.575 KB
Version History (View Complete History)
  • (2010-04-25) Updated to version: unzip-6.0
  • (2008-03-26) Updated to version: unzip-5.52p0
  • (2006-07-21) Package added to openports.se, version unzip-5.52 (created)
[show/hide] View available PLISTS (Can be a lot of data)

CVS Commit History:

   2017-05-24 07:52:34 by Stuart Henderson | Files touched by this commit (1)
Log message:
extend PORTROACH to skip 5.5.1 as well
   2017-04-12 05:11:52 by Alexander Bluhm | Files touched by this commit (2)
Log message:
Do not perform tty operations on non-tty file descriptors.  Otherwise
pledge("tty") may abort unzip </dev/null.
discussed with deraadt@ semarie@; OK tb@ sthen@
   2017-04-12 05:11:52 by Alexander Bluhm | Files touched by this commit (2)
Log message:
Do not perform tty operations on non-tty file descriptors.  Otherwise
pledge("tty") may abort unzip </dev/null.
discussed with deraadt@ semarie@; OK tb@ sthen@
   2017-03-27 06:25:15 by Paul Irofti | Files touched by this commit (3)
Log message:
Backport the unzip CVE fixes committed by bluhm@.
%-------------------------------------------------------------------
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
%-------------------------------------------------------------------
OK robert@.
   2017-03-27 06:25:15 by Paul Irofti | Files touched by this commit (3)
Log message:
Backport the unzip CVE fixes committed by bluhm@.
%-------------------------------------------------------------------
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
%-------------------------------------------------------------------
OK robert@.
   2017-03-23 11:26:17 by Alexander Bluhm | Files touched by this commit (6)
Log message:
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
   2017-03-23 11:26:17 by Alexander Bluhm | Files touched by this commit (6)
Log message:
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
   2017-03-23 11:26:17 by Alexander Bluhm | Files touched by this commit (6)
Log message:
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
   2017-03-23 11:26:17 by Alexander Bluhm | Files touched by this commit (6)
Log message:
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
   2017-03-23 11:26:17 by Alexander Bluhm | Files touched by this commit (6)
Log message:
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
   2017-03-23 11:26:17 by Alexander Bluhm | Files touched by this commit (6)
Log message:
Apply a bunch of CVE and other fixes for unzip from debian and
redhat bug tracker.  Add the links to the patch files.  The fix for
CVE-2014-9636 was improved.
OK jca@
   2016-09-13 05:44:07 by Christian Weisgerber | Files touched by this commit (13)
Log message:
replace libiconv module
   2016-01-15 12:57:24 by Stuart Henderson | Files touched by this commit (7)
Log message:
add an easily-greppable marker for ports known to use pledge().
it's not so important while they're only in patches in the ports tree,
but for any which get upstreamed it saves a ~100GB grep to find them.
   2015-11-30 08:16:29 by Stuart Henderson | Files touched by this commit (1)
Log message:
add portroach marker, skipv:552
   2015-10-20 07:13:52 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
tame -> pledge
ok sthen@
   2015-10-20 07:13:52 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
tame -> pledge
ok sthen@
   2015-10-20 07:13:52 by Antoine Jacoutot | Files touched by this commit (3)
Log message:
tame -> pledge
ok sthen@
   2015-10-16 10:22:16 by Stuart Henderson | Files touched by this commit (3)
Log message:
unzip can pledge to use the following: stdio rpath wpath cpath fattr tty.
This is possible now that pledge(2) treats TIOCGWINSZ like TIOCGETA, allowing
it to return ENOTTY rather than killing the process for a non-terminal device.
   2015-10-16 10:22:16 by Stuart Henderson | Files touched by this commit (3)
Log message:
unzip can pledge to use the following: stdio rpath wpath cpath fattr tty.
This is possible now that pledge(2) treats TIOCGWINSZ like TIOCGETA, allowing
it to return ENOTTY rather than killing the process for a non-terminal device.
   2015-10-16 10:22:16 by Stuart Henderson | Files touched by this commit (3)
Log message:
unzip can pledge to use the following: stdio rpath wpath cpath fattr tty.
This is possible now that pledge(2) treats TIOCGWINSZ like TIOCGETA, allowing
it to return ENOTTY rather than killing the process for a non-terminal device.
   2015-05-11 15:22:06 by Dmitrij Czarkoff | Files touched by this commit (1)
Log message:
consistent spacing
OK sthen@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-05-11 15:19:23 by Dmitrij Czarkoff | Files touched by this commit (7)
Log message:
add "iconv" flavor
OK sthen@, stsp@
   2015-02-07 09:10:12 by Christian Weisgerber | Files touched by this commit (3)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian
   2015-02-07 09:10:12 by Christian Weisgerber | Files touched by this commit (3)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian
   2015-02-07 09:09:53 by Christian Weisgerber | Files touched by this commit (3)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian
   2015-02-07 09:09:53 by Christian Weisgerber | Files touched by this commit (3)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian
   2015-02-06 14:37:04 by Christian Weisgerber | Files touched by this commit (4)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian; ok sthen@
   2015-02-06 14:37:04 by Christian Weisgerber | Files touched by this commit (4)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian; ok sthen@
   2015-02-06 14:37:04 by Christian Weisgerber | Files touched by this commit (4)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian; ok sthen@
   2015-02-06 14:37:04 by Christian Weisgerber | Files touched by this commit (4)
Log message:
Security fixes:
CVE-2014-8139: CRC32 verification heap-based overflow
CVE-2014-8140: out-of-bounds write issue in test_compr_eb()
CVE-2014-8141: out-of-bounds read issues in getZip64Data()
CVE-2014-9636: out-of-bounds read/write in test_compr_eb()
Via Debian; ok sthen@
   2014-12-09 15:51:35 by Robert Peichaer | Files touched by this commit (1)
Log message:
Remove mirror.switch.ch from MASTER_SITES.
OK sthen@
   2011-05-17 13:01:39 by Landry Breuil | Files touched by this commit (1)
Log message:
Remove hppa-specific hack adding -O0, it seems to just build and run
fine now. Fold back common MAKE_FLAGS in a single place.
From Brad.
   2010-10-18 10:47:00 by Marc Espie | Files touched by this commit (39)
Log message:
USE_GROFF=Yes
   2010-04-25 04:36:06 by Jonathan Gray | Files touched by this commit (4)
Log message:
update to unzip 6.0 which adds support for ZIP64 & UTF8 filenames
among other things.
   2010-04-25 04:36:06 by Jonathan Gray | Files touched by this commit (4)
Log message:
update to unzip 6.0 which adds support for ZIP64 & UTF8 filenames
among other things.
   2010-04-25 04:36:06 by Jonathan Gray | Files touched by this commit (4)
Log message:
update to unzip 6.0 which adds support for ZIP64 & UTF8 filenames
among other things.
   2010-04-25 04:36:06 by Jonathan Gray | Files touched by this commit (4)
Log message:
update to unzip 6.0 which adds support for ZIP64 & UTF8 filenames
among other things.
   2008-03-25 13:39:30 by Jasper Lievisse Adriaanse | Files touched by this commit (2)
Log message:
Security fix for unzip;
fix CVE-2008-0888, patch from debian.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0888
ok grunk@ (who came up with the same diff)
   2008-03-25 13:39:30 by Jasper Lievisse Adriaanse | Files touched by this commit (2)
Log message:
Security fix for unzip;
fix CVE-2008-0888, patch from debian.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0888
ok grunk@ (who came up with the same diff)
   2007-09-15 04:14:34 by Marc Espie | Files touched by this commit (38)
Log message:
zap all quotes in COMMENT/PERMIT_*
   2007-04-05 09:38:13 by Marc Espie | Files touched by this commit (1270)
Log message:
base64 distinfo with SHA256


   2006-07-11 00:55:28 by Steven Mestdagh | Files touched by this commit (1)
Log message:
fix master sites


   2005-06-21 13:48:28 by Christian Weisgerber | Files touched by this commit (2)
Log message:
maintenance update to 5.52; from Alexandre Anriot


   2005-06-21 13:48:28 by Christian Weisgerber | Files touched by this commit (2)
Log message:
maintenance update to 5.52; from Alexandre Anriot


   2005-01-05 08:40:37 by Christian Weisgerber | Files touched by this commit (48)
Log message:
SIZE


   2004-11-21 05:50:34 by Marc Espie | Files touched by this commit (38)
Log message:
Mark all system libs in WANTLIB, result of running newlib-depends-check


   2004-08-03 05:30:02 by Marc Espie | Files touched by this commit (24)
Log message:
manpages markers.
use SHARED_ONLY to discard PFRAG.shared.


   2004-07-24 08:20:49 by Marc Espie | Files touched by this commit (27)
Log message:
switch to using dir/ and @info.
a few more tweaks done by the automatic update mode of make update-plist.


   2004-06-27 17:29:55 by Peter Valchev | Files touched by this commit (1)
Log message:
Use -O0 to compile on hppa, workarounds a compiler bug which lead to
crashes, hangs, and other odd behaviour during extraction.


   2004-06-25 08:04:09 by Nikolay Sturm | Files touched by this commit (1)
Log message:
keep the dash in the PKGNAME, noticed by Jacob Meuser


   2004-06-24 15:35:15 by Nikolay Sturm | Files touched by this commit (5)
Log message:
update to unzip 5.51


   2004-06-24 15:35:15 by Nikolay Sturm | Files touched by this commit (5)
Log message:
update to unzip 5.51


   2004-06-24 15:35:15 by Nikolay Sturm | Files touched by this commit (5)
Log message:
update to unzip 5.51


   2004-06-24 15:35:15 by Nikolay Sturm | Files touched by this commit (5)
Log message:
update to unzip 5.51


   2004-06-24 15:35:15 by Nikolay Sturm | Files touched by this commit (5)
Log message:
update to unzip 5.51


   2003-12-15 14:42:44 by Christian Weisgerber | Files touched by this commit (507)
Log message:
remove WWW lines


   2003-08-17 18:04:42 by Brad Smith | Files touched by this commit (3)
Log message:
MFC:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-08-17 18:04:42 by Brad Smith | Files touched by this commit (3)
Log message:
MFC:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-08-17 18:01:55 by Brad Smith | Files touched by this commit (3)
Log message:
MFC:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-08-17 18:01:55 by Brad Smith | Files touched by this commit (3)
Log message:
MFC:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-08-17 17:48:41 by Brad Smith | Files touched by this commit (3)
Log message:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-08-17 17:48:41 by Brad Smith | Files touched by this commit (3)
Log message:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-08-17 17:48:41 by Brad Smith | Files touched by this commit (3)
Log message:
Improvement on the existing directory traversal patch, fixes the case
where the path component includes a quoted slash.


   2003-07-02 10:09:06 by Brad Smith | Files touched by this commit (2)
Log message:
Another directory traversal issue in unzip 5.50 and earlier. Similar to
the first except this issue is triggered by prefixing the .. sequence with
certain non-printable characters which are filtered out resulting in just
the .. sequence.
http://marc.theaimsgroup.com/?l=bugtraq&m=105259038503175&w=2


   2003-07-02 10:09:06 by Brad Smith | Files touched by this commit (2)
Log message:
Another directory traversal issue in unzip 5.50 and earlier. Similar to
the first except this issue is triggered by prefixing the .. sequence with
certain non-printable characters which are filtered out resulting in just
the .. sequence.
http://marc.theaimsgroup.com/?l=bugtraq&m=105259038503175&w=2


   2003-07-02 10:06:52 by Brad Smith | Files touched by this commit (2)
Log message:
Another directory traversal issue in unzip 5.50 and earlier. Similar to
the first except this issue is triggered by prefixing the .. sequence with
certain non-printable characters which are filtered out resulting in just
the .. sequence.
http://marc.theaimsgroup.com/?l=bugtraq&m=105259038503175&w=2


   2003-07-02 10:06:52 by Brad Smith | Files touched by this commit (2)
Log message:
Another directory traversal issue in unzip 5.50 and earlier. Similar to
the first except this issue is triggered by prefixing the .. sequence with
certain non-printable characters which are filtered out resulting in just
the .. sequence.
http://marc.theaimsgroup.com/?l=bugtraq&m=105259038503175&w=2


   2003-07-02 10:03:59 by Brad Smith | Files touched by this commit (2)
Log message:
Another directory traversal issue in unzip 5.50 and earlier. Similar to
the first except this issue is triggered by prefixing the .. sequence with
certain non-printable characters which are filtered out resulting in just
the .. sequence.


   2003-07-02 10:03:59 by Brad Smith | Files touched by this commit (2)
Log message:
Another directory traversal issue in unzip 5.50 and earlier. Similar to
the first except this issue is triggered by prefixing the .. sequence with
certain non-printable characters which are filtered out resulting in just
the .. sequence.


   2003-05-23 20:40:42 by Jolan Luff | Files touched by this commit (12)
Log message:
lzo     -- # GPL
lzop    -- # GNU GPL -> # GPL
macutil -- sync w/# None style
nulib   -- # Restrictive
rar     -- # Restrictive
ucl     -- # GPL
unace   -- # Copyrighted but freely distributable.
That's all the author states.  Is this acceptable as a
license?
-- Drop MAINTAINER per his request
unarj   -- # Restrictive
PERMIT_*_CDROM=No
"If you wish to distribute a modified version of UNARJ
you MUST indicate that it is a modified version both in
the program and source code."
unrar  --  # Restrictive
unzip  --  # Conditional
It is freely re-distributable with conditions which we meet.
This could use another pair of eyes to confirm.
zip    --  # Conditional
Same thing as unzip.
zoo    --  # Conditional
Different author/license but same idea as zip/unzip.


   2002-09-30 10:55:44 by Brad Smith | Files touched by this commit (2)
Log message:
Fix two security related issues...
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-1268
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2001-1269
MFC:
upgrade to unzip 5.50
--
From: Aaron Yourk <ayourk@srt.com>