Search for packages
Package details: pkg:deb/debian/gzip@1.3.2-3woody3
purl pkg:deb/debian/gzip@1.3.2-3woody3
Next non-vulnerable version 1.10-4+deb11u1
Latest non-vulnerable version 1.10-4+deb11u1
Risk 4.0
Vulnerabilities affecting this package (14)
Vulnerability Summary Fixed by
VCID-2vkn-f667-vfem
Aliases:
CVE-2005-0988
1.3.5-10sarge2
Affected by 8 other vulnerabilities.
VCID-5uc4-ejtw-m7cv
Aliases:
CVE-2003-0367
1.3.5-10sarge2
Affected by 8 other vulnerabilities.
VCID-68k1-pc22-abf3
Aliases:
CVE-2006-4338
1.3.5-15
Affected by 3 other vulnerabilities.
VCID-6bnb-d9ev-gkch
Aliases:
CVE-2006-4336
1.3.5-15
Affected by 3 other vulnerabilities.
VCID-92j1-y3t2-v7cw
Aliases:
CVE-2006-4335
1.3.5-15
Affected by 3 other vulnerabilities.
VCID-9j9f-e8xh-8qds
Aliases:
CVE-2005-0758
1.3.5-10sarge2
Affected by 8 other vulnerabilities.
VCID-9pkp-cgrj-rudx
Aliases:
CVE-2009-2624
1.3.12-9+squeeze1
Affected by 1 other vulnerability.
VCID-cbfd-nvnf-uycu
Aliases:
CVE-1999-1332
1.3.5-10sarge2
Affected by 8 other vulnerabilities.
VCID-cgxa-khrw-c3at
Aliases:
CVE-2006-4337
1.3.5-15
Affected by 3 other vulnerabilities.
VCID-djsn-w761-z7gs
Aliases:
CVE-2005-1228
1.3.5-10sarge2
Affected by 8 other vulnerabilities.
VCID-dmr7-uamv-yyer
Aliases:
CVE-2004-0970
1.3.5-10sarge2
Affected by 8 other vulnerabilities.
VCID-memf-4ncn-97ds
Aliases:
CVE-2010-0001
1.3.12-9+squeeze1
Affected by 1 other vulnerability.
VCID-yvpp-2w12-dycv
Aliases:
CVE-2022-1271
An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two or more newlines where selected content and the target file names are embedded in crafted multi-line file names. This flaw allows a remote, low privileged attacker to force zgrep to write arbitrary files on the system.
1.9-3+deb10u1
Affected by 1 other vulnerability.
1.10-4+deb11u1
Affected by 0 other vulnerabilities.
VCID-z3st-cymz-8kcf
Aliases:
CVE-2006-4334
1.3.5-15
Affected by 3 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-08-01T20:13:22.162056+00:00 Debian Oval Importer Affected by VCID-djsn-w761-z7gs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T20:08:45.797283+00:00 Debian Oval Importer Affected by VCID-68k1-pc22-abf3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T19:56:02.612380+00:00 Debian Oval Importer Affected by VCID-9j9f-e8xh-8qds https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T19:11:33.758042+00:00 Debian Oval Importer Affected by VCID-yvpp-2w12-dycv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T19:11:13.497026+00:00 Debian Oval Importer Affected by VCID-dmr7-uamv-yyer https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T18:54:44.348666+00:00 Debian Oval Importer Affected by VCID-6bnb-d9ev-gkch https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T17:45:28.030068+00:00 Debian Oval Importer Affected by VCID-92j1-y3t2-v7cw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T17:18:23.586954+00:00 Debian Oval Importer Affected by VCID-2vkn-f667-vfem https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T16:46:39.355448+00:00 Debian Oval Importer Affected by VCID-cbfd-nvnf-uycu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T16:46:14.092542+00:00 Debian Oval Importer Affected by VCID-cgxa-khrw-c3at https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T16:21:52.891862+00:00 Debian Oval Importer Affected by VCID-9pkp-cgrj-rudx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T15:54:45.577020+00:00 Debian Oval Importer Affected by VCID-5uc4-ejtw-m7cv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T13:50:14.644161+00:00 Debian Oval Importer Affected by VCID-z3st-cymz-8kcf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T13:31:06.331569+00:00 Debian Oval Importer Affected by VCID-memf-4ncn-97ds https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 37.0.0
2025-08-01T11:23:44.276695+00:00 Debian Oval Importer Affected by VCID-yvpp-2w12-dycv https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 37.0.0