Описание
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GZIP archive that triggers an out-of-bounds write, aka a "stack modification vulnerability."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.3.5-12ubuntu0.1 |
| devel | released | 1.3.5-14ubuntu1 |
| edgy | released | 1.3.5-14ubuntu1 |
| feisty | released | 1.3.5-14ubuntu1 |
| gutsy | released | 1.3.5-14ubuntu1 |
| hardy | released | 1.3.5-14ubuntu1 |
| intrepid | released | 1.3.5-14ubuntu1 |
| jaunty | released | 1.3.5-14ubuntu1 |
| karmic | released | 1.3.5-14ubuntu1 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 1.14i-10.1 |
| edgy | ignored | end of life, was needed |
| feisty | released | 1.14i-10.1 |
| gutsy | released | 1.14i-10.1 |
| hardy | released | 1.14i-10.1 |
| intrepid | released | 1.14i-10.1 |
| jaunty | released | 1.14i-10.1 |
| karmic | released | 1.14i-10.1 |
| upstream | needs-triage |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GZIP archive that triggers an out-of-bounds write, aka a "stack modification vulnerability."
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GZIP archive that triggers an out-of-bounds write, aka a "stack modification vulnerability."
Array index error in the make_table function in unlzh.c in the LZH dec ...
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GZIP archive that triggers an out-of-bounds write, aka a "stack modification vulnerability."
7.5 High
CVSS2