Gzip Security Vulnerabilities and Issues — Gzip CVE List

Lucene search

GnuGzip

11 matches found

CVE•added 2022/08/31 4:15 p.m.•980 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation ...

8.8CVSS8.5AI score0.00716EPSS

CVE•added 2010/01/29 6:30 p.m.•93 views

CVE-2009-2624

The huft_build function in inflate.c in gzip before 1.3.13 creates a hufts (aka huffman) table that is too small, which allows remote attackers to cause a denial of service (application crash or infinite loop) or possibly execute arbitrary code via a crafted archive. NOTE: this issue is caused by a...

6.8CVSS9.5AI score0.08683EPSS

CVE•added 2010/01/29 6:30 p.m.•78 views

CVE-2010-0001

Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading t...

6.8CVSS8.9AI score0.3819EPSS

CVE•added 2005/05/02 4:0 a.m.•69 views

CVE-2005-0988

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

3.7CVSS5.9AI score0.00115EPSS

CVE•added 2005/05/02 4:0 a.m.•60 views

CVE-2005-1228

Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.

5CVSS6.3AI score0.04585EPSS

CVE•added 2005/02/09 5:0 a.m.•58 views

CVE-2004-0970

The (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: the znew vulnerability may overlap CVE-2003-0367.

2.1CVSS5.8AI score0.00141EPSS

CVE•added 2005/05/13 4:0 a.m.•56 views

CVE-2005-0758

zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.

4.6CVSS6.8AI score0.0015EPSS

CVE•added 2003/07/02 4:0 a.m.•55 views

CVE-2003-0367

znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files.

2.1CVSS6AI score0.00141EPSS

CVE•added 2002/04/12 4:0 a.m.•52 views

CVE-2001-1228

Buffer overflows in gzip 1.3x, 1.2.4, and other versions might allow attackers to execute code via a long file name, possibly remotely if gzip is run on an FTP server.

7.5CVSS7AI score0.01327EPSS

CVE•added 2005/01/19 5:0 a.m.•49 views

CVE-2004-1349

gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files.

2.1CVSS6.3AI score0.00109EPSS

CVE•added 2004/12/06 5:0 a.m.•42 views

CVE-2004-0603

gzexe in gzip 1.3.3 and earlier will execute an argument when the creation of a temp file fails instead of exiting the program, which could allow remote attackers or local users to execute arbitrary commands, a different vulnerability than CVE-1999-1332.

10CVSS6.9AI score0.02503EPSS