Extracted from a patch in Fedora.

http://pkgs.fedoraproject.org/cgit/unzip.git/tree/unzip-6.0-heap-overflow-infloop.patch?id=d18f821e

From bd150334fb4084f5555a6be26b015a0671cb5b74 Mon Sep 17 00:00:00 2001
From: Kamil Dudka <kdudka@redhat.com>
Date: Tue, 22 Sep 2015 18:52:23 +0200
Subject: [PATCH 3/3] extract: prevent unsigned overflow on invalid input

Suggested-by: Stefan Cornelius
---
 extract.c | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/extract.c b/extract.c
index 29db027..b9ae667 100644
--- a/extract.c
+++ b/extract.c
@@ -1257,8 +1257,17 @@ static int extract_or_test_entrylist(__G__ numchunk,
         if (G.lrec.compression_method == STORED) {
             zusz_t csiz_decrypted = G.lrec.csize;
 
-            if (G.pInfo->encrypted)
+            if (G.pInfo->encrypted) {
+                if (csiz_decrypted <= 12) {
+                    /* handle the error now to prevent unsigned overflow */
+                    Info(slide, 0x401, ((char *)slide,
+                      LoadFarStringSmall(ErrUnzipNoFile),
+                      LoadFarString(InvalidComprData),
+                      LoadFarStringSmall2(Inflate)));
+                    return PK_ERR;
+                }
                 csiz_decrypted -= 12;
+            }
             if (G.lrec.ucsize != csiz_decrypted) {
                 Info(slide, 0x401, ((char *)slide,
                   LoadFarStringSmall2(WrnStorUCSizCSizDiff),
-- 
2.5.2

102c54'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/bootloader.scm'>
<input type='hidden' name='id' value='558b0bbe291b2f2cd38b7f4eadc827e2ed102c54'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=558b0bbe291b2f2cd38b7f4eadc827e2ed102c54'>root</a>/<a href='/guix/log/gnu?id=558b0bbe291b2f2cd38b7f4eadc827e2ed102c54'>gnu</a>/<a href='/guix/log/gnu/bootloader.scm?id=558b0bbe291b2f2cd38b7f4eadc827e2ed102c54'>bootloader.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/bootloader.scm?id=558b0bbe291b2f2cd38b7f4eadc827e2ed102c54&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2019-08-30 01:33:45 +0200'>2019-08-30</span></td><td><a href='/guix/commit/gnu/bootloader.scm?id=a28cfee841e9c5ab179291d3065f1486fd065e7e'>system: Add 'bootloader-menu-entries' field to &lt;boot-parameters&gt;.</a><span class='msg-avail'>...<span class='msg-tooltip'>This allows us to keep track of the extra menu entries specified in the
OS configuration.

* gnu/system.scm (&lt;boot-parameters&gt;)[bootloader-menu-entries]: New field.
(read-boot-parameters): Initialize it.
(operating-system-boot-parameters): Likewise.
(operating-system-boot-parameters-file): Serialize it.
* gnu/bootloader.scm (menu-entry-&gt;sexp, sexp-&gt;menu-entry): New
procedures.
</span></span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2019-08-30 01:33:45 +0200'>2019-08-30</span></td><td><a href='/guix/commit/gnu/bootloader.scm?id=ac9cd78ea9e6a3cf850b33fb2111b85e2bbf533d'>bootloader: Fix comment about 'menu-entries'.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/bootloader.scm (&lt;bootloader-configuration&gt;)[menu-entries]: Fix
margin comment.
</span></span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2019-03-24 23:06:11 +0100'>2019-03-24</span></td><td><a href='/guix/commit/gnu/bootloader.scm?id=8d058e7b1b1a409d3d9cc29c5650a98db4e78783'>bootloader: Add a 'keyboard-layout' field.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/bootloader/grub.scm (keyboard-layout-file): New procedure.
(grub-configuration-file)[keyboard-layout-file]: New variable.
[builder]: Use it.
* gnu/bootloader.scm (&lt;bootloader-configuration&gt;)[keyboard-layout]: New
field.
* doc/guix.texi (Bootloader Configuration): Document it.

Co-authored-by: nee &lt;nee-git@hidamari.blue&gt;
</span></span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2019-03-24 23:06:10 +0100'>2019-03-24</span></td><td><a href='/guix/commit/gnu/bootloader.scm?id=91b6873b24c205bd445844845fb44add643d0cff'>bootloader: Reindent record type definition.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/bootloader.scm (&lt;bootloader-configuration&gt;): Reindent.
</span></span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2019-03-24 23:06:10 +0100'>2019-03-24</span></td><td><a href='/guix/commit/gnu/bootloader.scm?id=8a0e1bb12b3c22a8c9a2be17492058ca63ec7c5d'>bootloader: Remove unused 'additional-configuration' field.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/bootloader.scm (&lt;bootloader-configuration&gt;)[additional-configuration]:
Remove.
</span></span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2019-01-16 14:07:38 +0100'>2019-01-16</span></td><td><a href='/guix/commit/gnu/bootloader.scm?id=5f7467f046c3c1648cdf6eb81b3ec041bfc1f9bb'>bootloader: Remove deprecated 'device' field.</a><span class='msg-avail'>...<span class='msg-tooltip'>The 'device' field had been deprecated in commit
045ebb3e58d74c75f39ce47380045d3cd00359c3 (August 2017).

* gnu/bootloader.scm (&lt;bootloader-configuration&gt;)[device]: Remove.
[target]: Change getter to 'bootstrap-configuration-target'.
(bootstrap-configuration-target): Remove.
</span></span></td><td>Ludovic Courtès</td></tr>

Age	Commit message (Expand)	Author
2019-08-30	system: Add 'bootloader-menu-entries' field to <boot-parameters>....This allows us to keep track of the extra menu entries specified in the OS configuration. * gnu/system.scm (<boot-parameters>)[bootloader-menu-entries]: New field. (read-boot-parameters): Initialize it. (operating-system-boot-parameters): Likewise. (operating-system-boot-parameters-file): Serialize it. * gnu/bootloader.scm (menu-entry->sexp, sexp->menu-entry): New procedures.	Ludovic Courtès
2019-08-30	bootloader: Fix comment about 'menu-entries'....* gnu/bootloader.scm (<bootloader-configuration>)[menu-entries]: Fix margin comment.	Ludovic Courtès
2019-03-24	bootloader: Add a 'keyboard-layout' field....* gnu/bootloader/grub.scm (keyboard-layout-file): New procedure. (grub-configuration-file)[keyboard-layout-file]: New variable. [builder]: Use it. * gnu/bootloader.scm (<bootloader-configuration>)[keyboard-layout]: New field. * doc/guix.texi (Bootloader Configuration): Document it. Co-authored-by: nee <nee-git@hidamari.blue>	Ludovic Courtès
2019-03-24	bootloader: Reindent record type definition....* gnu/bootloader.scm (<bootloader-configuration>): Reindent.	Ludovic Courtès
2019-03-24	bootloader: Remove unused 'additional-configuration' field....* gnu/bootloader.scm (<bootloader-configuration>)[additional-configuration]: Remove.	Ludovic Courtès
2019-01-16	bootloader: Remove deprecated 'device' field....The 'device' field had been deprecated in commit 045ebb3e58d74c75f39ce47380045d3cd00359c3 (August 2017). * gnu/bootloader.scm (<bootloader-configuration>)[device]: Remove. [target]: Change getter to 'bootstrap-configuration-target'. (bootstrap-configuration-target): Remove.	Ludovic Courtès