11 matches found
CVE-2022-1271
CVE-2022-1271 affects GNU gzip's zgrep: an attacker can cause arbitrary file writes by supplying crafted multi-line filenames. Two or more consecutive newlines in filenames lead to content and target file names being embedded in the same path, and insufficient validation enables remote, low-privi...
CVE-2009-2624
CVE-2009-2624 affects the GNU gzip utility. The bug is in gzip’s huft_build function (inflate.c) where the Huffman table is allocated too small, enabling a crafted archive to cause a denial of service (crash or infinite loop) and possibly arbitrary code execution. Root cause is a regression from ...
CVE-2010-0001
CVE-2010-0001 is an integer underflow in gzip’s unlzw() for 64-bit platforms, triggered while decompressing LZW data. The vulnerability can cause an application crash or potentially arbitrary code execution when a crafted archive is opened. Public advisories note this affects gzip prior to versio...
CVE-2005-0988
CVE-2005-0988 describes a race condition in gzip prior to 1.3.5 that affects permission handling during decompression. Specifically, when decompressing a file, a local attacker could exploit a hard-link or timing issue to change the permissions of an arbitrary file (or overwrite it) in the target...
CVE-2005-1228
Summary: CVE-2005-1228 and CAN-2005-0988 affect gzip up to 1.3.5. Two issues: (1) -N option path traversal can cause arbitrary file creation/overwrite in directories; (2) a permission/ownership race during decompression can allow a local attacker to modify permissions or replace files with linked...
CVE-2005-0758
The CVE-2005-0758 issue affects gzip prior to 1.3.5, where zgrep does not properly sanitize file arguments, allowing local users to inject filenames into a sed script and execute arbitrary commands. Connected advisories confirm related issues (CVE-2005-0988 and CVE-2005-1228) in gunzip/bzip2 work...
CVE-2003-0367
CVE-2003-0367 concerns the gzip package, where the secondary scripts (gzexe, zdiff, znew) allow local users to overwrite arbitrary files via a symlink attack on temporary files. The issue is attributed to insecure temporary-file handling in these scripts, as noted in related advisories and CVE en...
CVE-2004-0970
CVE-2004-0970 concerns the gzip package: the (1) gzexe, (2) zdiff, and (3) znew scripts are able to overwrite files via a symlink attack on temporary files, enabling local users to modify files. This vulnerability is described as a local-privilege-impact issue (I:P) with a low base score (2.1) an...
CVE-2001-1228
CVE-2001-1228 describes buffer overflows in gzip (notably versions from 1.2.4 and 1.3x and other releases) that could allow code execution via a long filename, potentially when gzip is used on an FTP server. Connected documents corroborate the vulnerability and point to advisories (e.g., Debian D...
CVE-2004-1349
CVE-2004-1349 affects gzip releases 1.3 and earlier on Solaris 8. The vulnerability occurs when gzip is invoked with the -f or -force flags, causing it to alter permissions of files that are hard linked to the target, enabling local users to view or modify those linked files. Connected sources co...
CVE-2004-0603
CVE-2004-0603 relates to gzip (gzexe) in versions 1.3.3 and earlier. The vulnerability arises when temporary file creation fails: gzexe will continue execution instead of exiting, potentially allowing remote attackers or local users to run arbitrary commands. The issue is documented in various ad...