Описание
ELSA-2010-0061: gzip security update (MODERATE)
[1.3.5-11.0.1.el5_4.1]
- Updated description in specfile to be product neutral
[1.3.5-11:.1]
- Added fix for CVE-2010-0001: (64 bit) Integer underflow by decompressing LZW format files Resolves: rhbz#555088
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
gzip
1.3.5-11.0.1.el5_4.1
Oracle Linux x86_64
gzip
1.3.5-11.0.1.el5_4.1
Oracle Linux i386
gzip
1.3.5-11.0.1.el5_4.1
Связанные CVE
Связанные уязвимости
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 ...
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.