|Reported by:||Owned by:|
From the info zip web site:
"The Unix port of UnZip 5.52 is reported to have a race-condition vulnerability, whereby a local attacker could change the permissions of the user's files during unpacking. (This has been assigned CVE #CAN-2005-2475.) "
Most locations have pulled the 5.52 sources, but they are still on anduin.
A warning needs to be put into the book until a new version is released.