Download
| Alert*
oval:org.secpod.oval:def:203202
gzip is installed oval:org.secpod.oval:def:506971 The gzip packages contain the gzip data compression utility. gzip is used to compress regular files. It replaces them with files containing the .gz extension, while retaining ownership modes, access, and modification times. Security Fix: * gzip: arbitrary-file-write vulnerability For more details ... oval:org.secpod.oval:def:19500102 An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name , this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two ... oval:org.secpod.oval:def:121900 The gzip package contains the popular GNU gzip data compression program. Gzipped files have a .gz extension. Gzip should be installed on your system, because it is a very commonly used data compression program. oval:org.secpod.oval:def:1505868 [1.10-9] - fix an arbitrary-file-write vulnerability in zgrep Resolves: CVE-2022-1271 oval:org.secpod.oval:def:3300677 SUSE Security Update: Security update for gzip oval:org.secpod.oval:def:5800059 The gzip packages contain the gzip data compression utility. gzip is used to compress regular files. It replaces them with files containing the .gz extension, while retaining ownership modes, access, and modification times. Security Fix: * gzip: arbitrary-file-write vulnerability For more details ... oval:org.secpod.oval:def:2500692 The gzip packages contain the gzip data compression utility. gzip is used to compress regular files. It replaces them with files containing the .gz extension, while retaining ownership modes, access, and modification times. oval:org.secpod.oval:def:4500903 The gzip packages contain the gzip data compression utility. gzip is used to compress regular files. It replaces them with files containing the .gz extension, while retaining ownership modes, access, and modification times. Security Fix: * gzip: arbitrary-file-write vulnerability For more details ... oval:org.secpod.oval:def:1505587 [1.9-13] - fix an arbitrary-file-write vulnerability in zgrep Resolves: CVE-2022-1271 oval:org.secpod.oval:def:89047630 This update for gzip fixes the following issues: - CVE-2022-1271: Fix escaping of malicious filenames oval:org.secpod.oval:def:1700893 An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name , this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two ... oval:org.secpod.oval:def:97638 [CLSA-2022:1653005178] Fixed CVE-2022-1271 in gzip oval:org.secpod.oval:def:500325 The gzip package provides the GNU gzip data compression program. An integer underflow flaw, leading to an array index error, was found in the way gzip expanded archive files compressed with the Lempel-Ziv-Welch compression algorithm. If a victim expanded a specially-crafted archive, it could cause ... oval:org.secpod.oval:def:202674 The gzip package provides the GNU gzip data compression program. An integer underflow flaw, leading to an array index error, was found in the way gzip expanded archive files compressed with the Lempel-Ziv-Welch (LZW) compression algorithm. If a victim expanded a specially-crafted archive, it could c ... |