Lucene search

K
redhatRedHatRHSA-2008:0893
HistorySep 16, 2008 - 12:00 a.m.

(RHSA-2008:0893) Moderate: bzip2 security update

2008-09-1600:00:00
access.redhat.com
19

EPSS

0.097

Percentile

94.8%

Bzip2 is a freely available, high-quality data compressor. It provides both
stand-alone compression and decompression utilities, as well as a shared
library for use with other programs.

A buffer over-read flaw was discovered in the bzip2 decompression routine.
This issue could cause an application linked against the libbz2 library to
crash when decompressing malformed archives. (CVE-2008-1372)

Users of bzip2 should upgrade to these updated packages, which contain a
backported patch to resolve this issue.