VulnerableCode Package Details - pkg:deb/debian/ncompress@4.2.4.0-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-1jzu-evut-aaaj Aliases: CVE-2010-0001	Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.	4.2.4.3-6 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-1jzu-evut-aaaj
Aliases:
CVE-2010-0001

Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.

4.2.4.3-6
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-h82b-3mrr-aaac	The decompress function in compress42.c in (1) ncompress 4.2.4 and (2) liblzw allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code, via crafted data that leads to a buffer underflow.	CVE-2006-1168

Vulnerability

Summary

Aliases

VCID-h82b-3mrr-aaac

The decompress function in compress42.c in (1) ncompress 4.2.4 and (2) liblzw allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code, via crafted data that leads to a buffer underflow.

CVE-2006-1168

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T17:58:22.724269+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:31:40.716450+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T00:40:24.925920+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	None	36.1.3
2025-06-20T23:59:22.950926+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	None	36.1.3
2025-06-08T12:15:18.287767+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T10:30:06.150019+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:24:44.565633+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-07T18:02:59.740067+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	None	36.1.0
2025-06-07T17:22:16.137600+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	None	36.1.0
2025-04-12T21:15:51.208337+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:01:02.455869+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T16:11:20.795755+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:57:20.671901+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-07T16:40:01.307413+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	None	36.0.0
2025-04-07T15:56:20.920806+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	None	36.0.0
2024-11-27T13:04:34.836184+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	35.0.0
2024-11-25T15:10:40.008789+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	35.0.0
2024-10-13T07:33:57.198437+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.2
2024-10-12T00:52:29.345831+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.2
2024-09-20T21:21:59.361315+00:00	Debian Oval Importer	Affected by	VCID-1jzu-evut-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.1
2024-09-20T11:51:54.378053+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.1
2024-02-10T02:55:25.701361+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.0rc2
2024-02-10T02:55:24.773083+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	34.0.0rc2
2024-02-10T02:28:22.562768+00:00	Debian Oval Importer	Fixing	VCID-h82b-3mrr-aaac	None	34.0.0rc2