Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.32 views

Oracle Solaris Third-Party Patch Update : gzip (cve_2009_2624_denial_of)

The remote Solaris system is missing necessary patches to address security updates : - The huftbuild function in inflate.c in gzip before 1.3.13 creates a hufts aka huffman table that is too small, which allows remote attackers to cause a denial of service application crash or infinite loop or...

6.8CVSS6.1AI score0.04179EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.37 views

Fedora 12 : gzip-1.3.12-14.fc12 (2010-0884)

This update fixes CVE-2009-2624 and CVE-2010-0001 vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.8CVSS7.6AI score0.04774EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.35 views

Fedora 11 : gzip-1.3.12-10.fc11 (2010-0964)

This update fixes CVE-2009-2624 and CVE-2010-0001 vulnerabilities. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.8CVSS7.6AI score0.04774EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.29 views

Fedora Update for gzip FEDORA-2010-0884

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS8.9AI score0.04774EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/02/01 12:0 a.m.39 views

Debian: Security Advisory (DSA-1974-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9AI score0.04774EPSS
Exploits1References3
OSV
OSV
added 2010/01/29 6:30 p.m.10 views

CVE-2009-2624

The huftbuild function in inflate.c in gzip before 1.3.13 creates a hufts aka huffman table that is too small, which allows remote attackers to cause a denial of service application crash or infinite loop or possibly execute arbitrary code via a crafted archive. NOTE: this issue is caused by a...

7.7AI score
Exploits0References14
CVE
CVE
added 2010/01/29 6:0 p.m.118 views

CVE-2009-2624

CVE-2009-2624 affects the GNU gzip utility. The bug is in gzip’s huft_build function (inflate.c) where the Huffman table is allocated too small, enabling a crafted archive to cause a denial of service (crash or infinite loop) and possibly arbitrary code execution. Root cause is a regression from ...

6.8CVSS9.5AI score0.04179EPSS
Exploits0References14Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/01/26 12:0 a.m.32 views

openSUSE Security Update : gzip (gzip-1838)

Specially crafted gzip archives could lead to gzip allocating a too small huffman table. Attackers could exploit that to crash gzip CVE-2009-2624. Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code...

6.8CVSS7.7AI score0.04774EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/01/26 12:0 a.m.42 views

openSUSE Security Update : gzip (gzip-1838)

Specially crafted gzip archives could lead to gzip allocating a too small huffman table. Attackers could exploit that to crash gzip CVE-2009-2624. Specially crafted gzip archives could trigger integer overflows. Attackers could exploit that to crash gzip or potentially execute arbitrary code...

6.8CVSS7.7AI score0.04774EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/01/22 12:0 a.m.27 views

Mandriva Update for gzip MDVSA-2010:020 (gzip)

Check for the Version of gzip OpenVAS Vulnerability Test Mandriva Update for gzip MDVSA-2010:020 gzip Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

6.8CVSS8.5AI score0.04774EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/01/21 12:0 a.m.32 views

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : gzip vulnerabilities (USN-889-1)

It was discovered that gzip incorrectly handled certain malformed compressed files. If a user or automated system were tricked into opening a specially crafted gzip file, an attacker could cause gzip to crash or possibly execute arbitrary code with the privileges of the user invoking the program...

6.8CVSS8.2AI score0.04774EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2010/01/20 6:42 p.m.72 views

USN-889-1: gzip vulnerabilities

It was discovered that gzip incorrectly handled certain malformed compressed files. If a user or automated system were tricked into opening a specially crafted gzip file, an attacker could cause gzip to crash or possibly execute arbitrary code with the privileges of the user invoking the program...

6.8CVSS8.2AI score0.04774EPSS
Exploits0
Rows per page
Query Builder