20 matches found
Debian: Security Advisory (DSA-1181-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-1974-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Design/Logic Flaw
The huftbuild function in inflate.c in gzip before 1.3.13 creates a hufts aka huffman table that is too small, which allows remote attackers to cause a denial of service application crash or infinite loop or possibly execute arbitrary code via a crafted archive. NOTE: this issue is caused by a...
SLES9: Security update for gzip
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: gzip For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012976 within the SuSE...
SuSE9 Security Update : gzip (YOU Patch Number 11220)
Several security issues with gzip have been found that can be exploited to compromise the system in conjunction with other programs while processing malformed archive files. The vulnerabilities have been tracked by Mitre CVE-2006-4334, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337 and CVE-2006-4338...
HP-UX Update for Software Distributor (SD) HPSBUX02195
Check for the Version of Software Distributor SD OpenVAS Vulnerability Test HP-UX Update for Software Distributor SD HPSBUX02195 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Gentoo Security Advisory GLSA 200609-13 (gzip)
The remote host is missing updates announced in advisory GLSA 200609-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200609-13 (gzip)
The remote host is missing updates announced in advisory GLSA 200609-13. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: gzip
The remote host is missing an update to the system as announced in the referenced advisory. VID 11a84092-8f9f-11db-ab33-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: gzip
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
SuSE 10 Security Update : gzip (ZYPP Patch Number 2085)
This update fixes several security problems that can be exploited to compromise the system in conjunction with other programs while processing malformated archive files. CVE-2006-4334 / CVE-2006-4335 / CVE-2006-4336 / CVE-2006-4337 / CVE-2006-4338 %NASLMINLEVEL 70300 C Tenable Network Security,...
openSUSE 10 Security Update : gzip (gzip-2084)
This update fixes several security problems that can be exploited to compromise the system in conjunction with other programs while processing malformated archive files. CVE-2006-4334,CVE-2006-4335,CVE-2006-4336,CVE-2006-4337,CVE -2006-4338 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
Mandrake Linux Security Advisory : gzip (MDKSA-2006:167)
NULL Dereference CVE-2006-4334 A stack modification vulnerability where a stack buffer can be modified out of bounds, but not in the traditional stack overrun sense exists in the LZH decompression support of gzip. CVE-2006-4335 A .bss buffer underflow exists in gzip's pack support, where a loop...
Debian DSA-1181-1 : gzip - several vulnerabilities
Tavis Ormandy from the Google Security Team discovered several vulnerabilities in gzip, the GNU compression utility. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-4334 A NULL pointer dereference may lead to denial of service if gzip is used in an...
RHEL 2.1 / 3 / 4 : gzip (RHSA-2006:0667)
Updated gzip packages that fix several security issues are now available for Red Hat Enterprise Linux. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The gzip package contains the GNU gzip data compression program. Tavis Ormandy of the Google...
Slackware 10.0 / 10.1 / 10.2 / 8.1 / 9.0 / 9.1 / current : gzip (SSA:2006-262-01)
New gzip packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix possible security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2006-262-01. The...
[slackware-security] gzip
New gzip packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and -current to fix possible security issues. More details about the issues fixed may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2005-0758...
CVE-2006-4334
CVE-2006-4334 is connected to CVE-2009-2624 as a regression in gzip before 1.3.13. The huft_build function in inflate.c creates a hufts table that is too small, allowing remote attackers to cause a denial of service (crash or infinite loop) or potentially execute arbitrary code via a crafted gzip...
[SECURITY] [DSA 1181-1] New gzip packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1181-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 19th, 2006 http://www.debian.org/security/faq -...
FreeBSD Security Advisory FreeBSD-SA-06:21.gzip
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:21.gzip Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in gzip Category: contrib Module: gzip Announced: 2006-09-19 Credits: Tavis...