Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
Intel NUC 13 Pro (Arena Canyon) review
Endorfy Arx 700 Air chassis review
Beelink SER5 Pro (Ryzen 7 5800H) mini PC review
Crucial T700 PCIe 5.0 NVMe SSD Review - 12GB/s
Sapphire Radeon RX 7600 PULSE review
Gainward GeForce RTX 4060 Ti GHOST review
Radeon RX 7600 review
ASUS GeForce RTX 4060 Ti TUF Gaming review
MSI GeForce RTX 4060 Ti Gaming X TRIO review
GeForce RTX 4060 Ti 8GB (FE) review

New Downloads
AMD Radeon Software Adrenalin 23.5.2 WHQL download
Intel ARC graphics Driver Download Version: 31.0.101.4382
CrystalDiskInfo 9.0.1 Download
Corsair Utility Engine Download (iCUE) Download v5.2
GeForce 535.98 WHQL driver download
CPU-Z download v2.06
AMD Radeon Software Adrenalin 23.5.1 WHQL download
GeForce 532.03 WHQL driver download
AMD Chipset Drivers Download 5.05.16.529
Display Driver Uninstaller Download version 18.0.6.4


New Forum Topics
AMD Software: Adrenalin Edition 23.5.2 - Driver Download and Discussion Migrating OS LG Unveils the UltraGear 27GR75Q-B: A High-Performance 27-inch WQHD Gaming Monitor finally joined the 5800X3D club RDNA3 RX7000 Seriess! Owners Thread, Tests, Benchmarks, Screenshots, Overclocks, & Tweaks! Review: AMD Radeon RX 7600 8GB Extreme 4-Way Sli Tuning NVIDIA GeForce Hotfix Driver 536.09 NVIDIA GeForce Game Ready 535.98 WHQL Download & Discussion RTX 4090 Owner's thread




Guru3D.com » News » Big Vulnerability hits 7-Zip file archiver - gets patched - Download v18.05

Big Vulnerability hits 7-Zip file archiver - gets patched - Download v18.05

by Hilbert Hagedoorn on: 05/03/2018 08:00 AM | source: | 16 comment(s)
Big Vulnerability hits 7-Zip file archiver - gets patched - Download v18.05

If you use, you can and should download v18.05 of the popular 7-Zip file archiver. The free to use WinZip replacement has a very critical vulnerability for which all it needed was a specially prepped RAR file. 

This has been addressed with the release of has been fixed with v18.05, I am highlighting this new v18.05 release this much as this is a pretty bad one as it allows remote execution, based on just a RAR file. The security researcher (landave.io) who discovered the vulnerability informed the developer of 7-Zip on the 6th of March this year. it has patched with the release of 7-Zip 18.05, which not only fixes the vulnerability but also adds ASLR security measures.

7-Zip is one of the most popular archivers available on the web, downloaded nearly 450 million times from Sourceforge alone. All users of 7-Zip are advised to update the software to the latest version, I've made a local mirror on Guru3D, which can be downloaded from here.
 

  > Download

 



Big Vulnerability hits 7-Zip file archiver - gets patched - Download v18.05




« Backblaze Hard Drive Stats for Q1 2018 Have Been published - 4TB HGST HDDs Very Reliable · Big Vulnerability hits 7-Zip file archiver - gets patched - Download v18.05 · Gigabyte may ship less than 10 million motherboards in 2018 »

4 pages 1 2 3 4


heffeque
Senior Member



Posts: 4332
Joined: 2003-03-03

#5544031 Posted on: 05/05/2018 01:06 AM
Nice tool, but that program is a little toy compared to Choco:

"There are 5762 community maintained packages" (currently)

This one is the Windows equivalent of Ubuntu package manager... it can install, uninstall, update software, look for new software in various categories, etc. I a completely different class than that little tool.

Oh, and there is a GUI as well (which I'm using), so I don't mess around with commandline:
https://chocolatey.org/packages/ChocolateyGUI
First you disregard it for being a simple and easy GUI tool, then you say that you are using ChocolateyGUI. Very coherent reasoning.

Sincerely, IMHO PatchMyPC is more than enough for my needs and most people's. Chocolatey is overkill and overly complicated for most commoners.

4 pages 1 2 3 4


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2023