Search for packages
| purl | pkg:deb/debian/gzip@1.13-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1q5k-8ctf-hff7 | gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file. |
CVE-1999-1332
|
| VCID-1yf3-td2x-xffn | This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2011. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information. |
CVE-2009-2624
|
| VCID-3adf-qttu-3kfd | A vulnerability has been discovered in GNU Gzip and XZ Utils' grep helpers which could result in writes to arbitrary files. |
CVE-2022-1271
|
| VCID-73ee-qa4t-gqd7 | gzip is affected by multiple vulnerabilities, including buffer overflows and infinite loops, possibly allowing the execution of arbitrary code. |
CVE-2006-4334
|
| VCID-ensg-v8ut-4kh9 | gzip is affected by multiple vulnerabilities, including buffer overflows and infinite loops, possibly allowing the execution of arbitrary code. |
CVE-2006-4337
|
| VCID-ggpy-kzh6-dkbh | security flaw |
CVE-2005-1228
|
| VCID-hn43-p68p-g3d7 | The (1) gzexe, (2) zdiff, and (3) znew scripts in the gzip package, as used by other packages such as ncompress, allows local users to overwrite files via a symlink attack on temporary files. NOTE: the znew vulnerability may overlap CVE-2003-0367. |
CVE-2004-0970
|
| VCID-ja6m-7d3c-k3cc | gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files. |
CVE-2004-1349
|
| VCID-px24-9c2r-73cn | gzip is affected by multiple vulnerabilities, including buffer overflows and infinite loops, possibly allowing the execution of arbitrary code. |
CVE-2006-4338
|
| VCID-uf6e-fsw6-bbbv | security flaw |
CVE-2005-0758
|
| VCID-vj3y-4hqq-xybm | security flaw |
CVE-2005-0988
|
| VCID-vm8g-v83d-mbfm | This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2011. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information. |
CVE-2010-0001
|
| VCID-w9ut-ky8t-sqar | gzip: symlink attack on temporary files leads to arbitrary file overwrite |
CVE-2003-0367
|
| VCID-xpf8-3pr7-dyew | gzip contain a bug potentially allowing an attacker to execute arbitrary commands. |
CVE-2004-0603
|
| VCID-z31n-qyzz-rfhy | gzip is affected by multiple vulnerabilities, including buffer overflows and infinite loops, possibly allowing the execution of arbitrary code. |
CVE-2006-4336
|
| VCID-z6cd-db4j-2uey | gzip is affected by multiple vulnerabilities, including buffer overflows and infinite loops, possibly allowing the execution of arbitrary code. |
CVE-2006-4335
|