Описание
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.3.5-12ubuntu0.1 |
| devel | released | 1.3.5-14ubuntu1 |
| edgy | released | 1.3.5-14ubuntu1 |
| feisty | released | 1.3.5-14ubuntu1 |
| upstream | needs-triage |
Показывать по
EPSS
3.7 Low
CVSS2
Связанные уязвимости
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a ...
Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
EPSS
3.7 Low
CVSS2