EUVD-2015-1333

Malware in sbrugna...

EUVD-2013-0316

Malware in sbrugna...

SUSE CVE-2013-0296

Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring...

SUSE CVE-2015-1191

Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a 1 full pathname or 2 .. dot dot in an archive...

new packages: pigz

An update is available for pigz. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.0...

Advisory ROSA-SA-2021-2004

Software: zlib 1.2.7 OS: Cobalt 7.9 CVE-ID: CVE-2013-0296 CVE-Crit: HIGH CVE-DESC: race condition in pigz before 2.2.5 uses permissions derived from umask when compressing a file before setting that file's permissions to match those of the source file, which may allow local users to bypass implie...

SUSE: Security Advisory (SUSE-SU-2015:0670-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

pigz bug fix and enhancement update

An update is available for pigz. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

ALBA-2020:1850 pigz bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

Security Bulletin: A vulnerability in pigz affects PowerKVM (CVE-2015-1191)

Summary PowerKVM is affected by a vulnerability in pigz. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2015-1191 DESCRIPTION: pigz could allow a remote attacker to traverse directories on the system, caused by an error in pigz.c. An attacker could send a...

Mageia: Security Advisory (MGASA-2016-0104)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2016-0104 Updated pigz packages fix security vulnerability

Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a full pathname or .. dot dot in an archive CVE-2015-1191...

Updated pigz packages fix security vulnerability

Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a full pathname or .. dot dot in an archive CVE-2015-1191...

openSUSE Security Update : pigz (openSUSE-2016-299)

Pigz, a multi-threaded implementation of gzip, was updated to fix one vulnerability. The following vulnerability was fixed : - A crafted file could have caused an unwanted directory traversal on extract CVE-2015-1191 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

openSUSE Security Update : pigz (openSUSE-2016-303)

Pigz, a multi-threaded implementation of gzip, was updated to fix one vulnerability. The following vulnerability was fixed : - A crafted file could have caused an unwanted directory traversal on extract CVE-2015-1191 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Amazon Linux: Security Advisory (ALAS-2015-499)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : pigz (SUSE-SU-2015:0670-1)

Pigz, a multi-threaded implementation of gzip, was updated to fix one vulnerability. The following vulnerability was fixed : - A crafted file could have caused an unwanted directory traversal on extract CVE-2015-1191 Note that Tenable Network Security has extracted the preceding description block...

Amazon Linux AMI : pigz (ALAS-2015-499)

Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a 1 full pathname or 2 .. dot dot in an archive. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security...

Low: pigz

Issue Overview: Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a 1 full pathname or 2 .. dot dot in an archive. Affected Packages: pigz Issue Correction: Run yum update pigz or yum update --advisory ALAS-2015-499 to update your...

SUSE-SU-2015:0670-1 Security update for pigz

Pigz, a multi-threaded implementation of gzip, was updated to fix one vulnerability. The following vulnerability was fixed: A crafted file could have caused an unwanted directory traversal on extract CVE-2015-1191...