FreeBSD -- errors handling corrupt compress file in compress(1) and gzip(1)

ID FEE94342-4638-11E1-9F47-00E0815B8DA8
Type freebsd
Reporter FreeBSD
Modified 2011-09-28T00:00:00


Problem Description: The code used to decompress a file created by compress(1) does not do sufficient boundary checks on compressed code words, allowing reference beyond the decompression table, which may result in a stack overflow or an infinite loop when the decompressor encounters a corrupted file.