17 matches found
EUVD-2015-1341
Malware in sbrugna...
Malicious code in pxz (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2649e06884047fa82f596d9f9b0822080bff93b64a69a9a6090c0640f19ec656 Packages are designed to collect basic info about the user when importing them, and have no other purpose. While they claim to do so, some packages from the sa...
MAL-2025-1986 Malicious code in pxz (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2649e06884047fa82f596d9f9b0822080bff93b64a69a9a6090c0640f19ec656 Packages are designed to collect basic info about the user when importing them, and have no other purpose. While they claim to do so, some packages from the sa...
Fedora 30 : pxz (2020-c9eb911737)
Update to GIT 20200421 - Added patch against race condition in setting permissions on output file 1182024 - Added patch to revert environment redirect allowing export XZOPT='-9' or similar Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
[SECURITY] Fedora 30 Update: pxz-4.999.9-19.beta.20200421git.fc30
Parallel XZ is a compression utility that takes advantage of running XZ compression simultaneously on different parts of an input file on multiple cores and processors. This significantly speeds up compression time...
Fedora: Security Advisory for pxz (FEDORA-2020-8b89d5b9eb)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for pxz (FEDORA-2020-07fcbfddbd)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 32 Update: pxz-4.999.9-19.beta.20200421git.fc32
Parallel XZ is a compression utility that takes advantage of running XZ compression simultaneously on different parts of an input file on multiple cores and processors. This significantly speeds up compression tim e...
[SECURITY] Fedora 31 Update: pxz-4.999.9-19.beta.20200421git.fc31
Parallel XZ is a compression utility that takes advantage of running XZ compression simultaneously on different parts of an input file on multiple cores and processors. This significantly speeds up compression tim e...
Fedora 31 : pxz (2020-07fcbfddbd)
Update to GIT 20200421 - Added patch against race condition in setting permissions on output file 1182024 - Added patch to revert environment redirect allowing export XZOPT='-9' or similar Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
CVE-2015-1200
Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for the output file when compressing a file before changing the permission to match the original file, which allows local users to bypass the intended access restrictions...
CVE-2015-1200
Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for the output file when compressing a file before changing the permission to match the original file, which allows local users to bypass the intended access restrictions...
Race condition
Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for the output file when compressing a file before changing the permission to match the original file, which allows local users to bypass the intended access restrictions...
CVE-2015-1200
Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for the output file when compressing a file before changing the permission to match the original file, which allows local users to bypass the intended access restrictions...
CVE-2015-1200
Removed by vendor...
CVE-2015-1200
pxz 4.999.99 Beta 3 suffers a race condition in how it sets output-file permissions during compression, allowing local users to bypass access restrictions before permissions are restored. Fedora/OpenVAS/Nessus advisories indicate a patch was added to fix this race and to address related environme...
pxz Insecure File Permissions Vulnerability
pxz is a compression tool for linux. An insecure file permission vulnerability exists in pxz, which allows local attackers to exploit the vulnerability to access globally readable files and obtain sensitive information...