CVE-2014-8139 (heap buffer overflow)
A heap-based buffer overflow exists in the CRC32 verification that
allows attackers to potentially execute arbitrary code or cause a denial
of service (memory corruption).
CVE-2014-8140 (out-of-bounds read/write)
Out-of-bounds access (both read and write) issues exist in
test_compr_eb() that can result in application crash or arbitrary code
execution.
CVE-2014-8141 (out-of-bounds read)
Two out-of-bounds read issues exist in getZip64Data() that allows
attackers to cause a denial of service.