3282 matches found
CVE-2002-0059
CVE-2002-0059: The decompression algorithm in zlib 1.1.3 and earlier can cause inflateEnd to free memory more than once (a double free), enabling memory corruption that may allow arbitrary code execution via malformed compression data. Affected: zlib up to version 1.1.3 and earlier. Root cause: d...
[SECURITY] New versions of gzip available
We were told by Michal Zalewski that gzexe as shipped with gzip uses an unsecure method decompressing executables on the fly opening a way of calling arbitrary programs. Newer versions for bo and hamm are fixing this. We recommend you upgrade your gzip package if youre using the gzexe method. dpk...