Search for packages
| purl | pkg:deb/debian/bzip2@1.0.2-1.woody2 |
| Next non-vulnerable version | 1.0.6-9.2~deb10u1 |
| Latest non-vulnerable version | 1.0.6-9.2~deb10u1 |
| Risk | 8.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-7b2j-s3g7-aaak
Aliases: CVE-2005-0758 |
zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script. |
Affected by 5 other vulnerabilities. |
|
VCID-8urm-9ubj-aaac
Aliases: CVE-2019-12900 |
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-an3m-4v53-aaaa
Aliases: CVE-2011-4089 |
The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory. |
Affected by 2 other vulnerabilities. |
|
VCID-ftyp-se1c-aaab
Aliases: CVE-2016-3189 |
Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block. |
Affected by 1 other vulnerability. |
|
VCID-hvhn-38c6-aaad
Aliases: CVE-2008-1372 |
bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats. |
Affected by 4 other vulnerabilities. |
|
VCID-pvq7-umur-aaag
Aliases: CVE-2010-0405 |
Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file. |
Affected by 3 other vulnerabilities. |
|
VCID-sfe6-46dt-aaah
Aliases: CVE-2005-1260 |
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb"). |
Affected by 6 other vulnerabilities. |
|
VCID-zzv2-5d1a-aaan
Aliases: CVE-2005-0953 |
Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete. |
Affected by 6 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:18:36.992639+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T19:15:46.056115+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:01:00.382184+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:26:09.011813+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:23:04.715258+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:18:30.205526+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:18:11.785449+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:55:13.400038+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:21:35.884514+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:33:59.087621+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T01:10:37.224643+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | None | 36.1.3 |
| 2025-06-21T01:07:02.434263+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | None | 36.1.3 |
| 2025-06-21T00:55:29.567123+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | None | 36.1.3 |
| 2025-06-20T23:38:14.379041+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | None | 36.1.3 |
| 2025-06-20T22:24:41.164046+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | None | 36.1.3 |
| 2025-06-20T22:16:48.172568+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | None | 36.1.3 |
| 2025-06-20T22:00:41.809017+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | None | 36.1.3 |
| 2025-06-20T20:22:18.196321+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | None | 36.1.3 |
| 2025-06-08T13:16:44.576026+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:54:21.081660+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:47:22.486009+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:44:32.830599+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:32:42.376502+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:20:42.952757+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:17:32.877191+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:12:23.733811+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:12:04.424267+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:48:40.608401+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:14:42.878947+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:28:02.532837+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T18:33:16.989598+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | None | 36.1.0 |
| 2025-06-07T18:29:38.471977+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | None | 36.1.0 |
| 2025-06-07T18:17:50.692876+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | None | 36.1.0 |
| 2025-06-07T17:01:10.648239+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | None | 36.1.0 |
| 2025-06-07T15:48:55.876717+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | None | 36.1.0 |
| 2025-06-07T15:40:50.227067+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | None | 36.1.0 |
| 2025-06-07T15:24:16.090490+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | None | 36.1.0 |
| 2025-06-07T13:58:19.380397+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | None | 36.1.0 |
| 2025-04-12T21:52:54.584824+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:47:12.613902+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:12:09.922684+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:29:57.736447+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:04:42.383617+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:41:31.438265+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:32:19.142586+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:29:25.755103+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:14:04.002771+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:52:02.426913+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:48:58.088710+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:44:19.279707+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:44:00.909671+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:21:08.030244+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:47:16.678109+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:00:21.308428+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T17:10:59.267204+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | None | 36.0.0 |
| 2025-04-07T17:07:18.193098+00:00 | Debian Oval Importer | Affected by | VCID-8urm-9ubj-aaac | None | 36.0.0 |
| 2025-04-07T16:55:22.538174+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | None | 36.0.0 |
| 2025-04-07T15:34:24.056847+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | None | 36.0.0 |
| 2025-04-07T14:19:44.210079+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | None | 36.0.0 |
| 2025-04-07T14:11:42.732237+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | None | 36.0.0 |
| 2025-04-07T13:55:34.065718+00:00 | Debian Oval Importer | Affected by | VCID-ftyp-se1c-aaab | None | 36.0.0 |
| 2025-04-07T12:32:51.368484+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | None | 36.0.0 |
| 2024-11-28T13:48:23.578158+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-27T14:07:25.096688+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-26T13:38:42.715983+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-25T07:29:01.246556+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-25T07:06:46.211075+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-25T06:43:25.541795+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-14T00:37:00.438283+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-13T08:18:24.590891+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-12T15:39:34.757667+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-11T19:47:22.780220+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-11T19:33:19.867299+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-11T19:18:35.457859+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T04:23:30.361126+00:00 | Debian Oval Importer | Affected by | VCID-an3m-4v53-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T21:38:36.056674+00:00 | Debian Oval Importer | Affected by | VCID-pvq7-umur-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T15:51:10.209630+00:00 | Debian Oval Importer | Affected by | VCID-hvhn-38c6-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T10:51:32.152204+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T10:49:02.738233+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T10:46:38.465214+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-06-22T20:20:22.383571+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc4 |
| 2024-06-22T20:20:21.551907+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc4 |
| 2024-06-22T19:56:38.538027+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | None | 34.0.0rc4 |
| 2024-06-22T04:56:15.838251+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc4 |
| 2024-06-22T04:56:15.038275+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc4 |
| 2024-06-22T04:32:33.698167+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | None | 34.0.0rc4 |
| 2024-06-21T12:14:28.476557+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc4 |
| 2024-06-21T12:14:26.749866+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc4 |
| 2024-06-21T11:31:23.889616+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | None | 34.0.0rc4 |
| 2024-02-01T04:43:40.221387+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc2 |
| 2024-02-01T04:43:39.398004+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc2 |
| 2024-02-01T04:06:28.874631+00:00 | Debian Oval Importer | Affected by | VCID-sfe6-46dt-aaah | None | 34.0.0rc2 |
| 2024-01-31T18:09:59.171779+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc2 |
| 2024-01-31T18:09:58.348711+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc2 |
| 2024-01-31T17:48:29.568755+00:00 | Debian Oval Importer | Affected by | VCID-zzv2-5d1a-aaan | None | 34.0.0rc2 |
| 2024-01-31T09:06:37.429535+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc2 |
| 2024-01-31T09:06:35.657710+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc2 |
| 2024-01-31T08:23:50.087025+00:00 | Debian Oval Importer | Affected by | VCID-7b2j-s3g7-aaak | None | 34.0.0rc2 |