Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.
Software | From | Fixed in |
---|---|---|
freebsd / freebsd | 4.0 | 4.0.x |
freebsd / freebsd | 4.0-alpha | 4.0-alpha.x |
freebsd / freebsd | 4.0-releng | 4.0-releng.x |
freebsd / freebsd | 4.1 | 4.1.x |
freebsd / freebsd | 4.1.1 | 4.1.1.x |
freebsd / freebsd | 4.1.1-release | 4.1.1-release.x |
freebsd / freebsd | 4.1.1-stable | 4.1.1-stable.x |
freebsd / freebsd | 4.10 | 4.10.x |
freebsd / freebsd | 4.10-release | 4.10-release.x |
freebsd / freebsd | 4.10-release_p8 | 4.10-release_p8.x |
freebsd / freebsd | 4.10-releng | 4.10-releng.x |
freebsd / freebsd | 4.11-release_p3 | 4.11-release_p3.x |
freebsd / freebsd | 4.11-releng | 4.11-releng.x |
freebsd / freebsd | 4.11-stable | 4.11-stable.x |
freebsd / freebsd | 4.2 | 4.2.x |
freebsd / freebsd | 4.2-stable | 4.2-stable.x |
freebsd / freebsd | 4.3 | 4.3.x |
freebsd / freebsd | 4.3-release | 4.3-release.x |
freebsd / freebsd | 4.3-release_p38 | 4.3-release_p38.x |
freebsd / freebsd | 4.3-releng | 4.3-releng.x |
freebsd / freebsd | 4.3-stable | 4.3-stable.x |
freebsd / freebsd | 4.4 | 4.4.x |
freebsd / freebsd | 4.4-release_p42 | 4.4-release_p42.x |
freebsd / freebsd | 4.4-releng | 4.4-releng.x |
freebsd / freebsd | 4.4-stable | 4.4-stable.x |
freebsd / freebsd | 4.5 | 4.5.x |
freebsd / freebsd | 4.5-release | 4.5-release.x |
freebsd / freebsd | 4.5-release_p32 | 4.5-release_p32.x |
freebsd / freebsd | 4.5-releng | 4.5-releng.x |
freebsd / freebsd | 4.5-stable | 4.5-stable.x |
freebsd / freebsd | 4.6 | 4.6.x |
freebsd / freebsd | 4.6-release | 4.6-release.x |
freebsd / freebsd | 4.6-release_p20 | 4.6-release_p20.x |
freebsd / freebsd | 4.6-releng | 4.6-releng.x |
freebsd / freebsd | 4.6-stable | 4.6-stable.x |
freebsd / freebsd | 4.6.2 | 4.6.2.x |
freebsd / freebsd | 4.7 | 4.7.x |
freebsd / freebsd | 4.7-release | 4.7-release.x |
freebsd / freebsd | 4.7-release_p17 | 4.7-release_p17.x |
freebsd / freebsd | 4.7-releng | 4.7-releng.x |
freebsd / freebsd | 4.7-stable | 4.7-stable.x |
freebsd / freebsd | 4.8 | 4.8.x |
freebsd / freebsd | 4.8-pre-release | 4.8-pre-release.x |
freebsd / freebsd | 4.8-release_p6 | 4.8-release_p6.x |
freebsd / freebsd | 4.8-releng | 4.8-releng.x |
freebsd / freebsd | 4.9 | 4.9.x |
freebsd / freebsd | 4.9-pre-release | 4.9-pre-release.x |
freebsd / freebsd | 4.9-releng | 4.9-releng.x |
freebsd / freebsd | 5.0 | 5.0.x |
freebsd / freebsd | 5.0-alpha | 5.0-alpha.x |
freebsd / freebsd | 5.0-release_p14 | 5.0-release_p14.x |
freebsd / freebsd | 5.0-releng | 5.0-releng.x |
freebsd / freebsd | 5.1 | 5.1.x |
freebsd / freebsd | 5.1-alpha | 5.1-alpha.x |
freebsd / freebsd | 5.1-release | 5.1-release.x |
freebsd / freebsd | 5.1-release_p5 | 5.1-release_p5.x |
freebsd / freebsd | 5.1-releng | 5.1-releng.x |
freebsd / freebsd | 5.2 | 5.2.x |
freebsd / freebsd | 5.2.1-release | 5.2.1-release.x |
freebsd / freebsd | 5.2.1-releng | 5.2.1-releng.x |
freebsd / freebsd | 5.3 | 5.3.x |
freebsd / freebsd | 5.3-release | 5.3-release.x |
freebsd / freebsd | 5.3-releng | 5.3-releng.x |
freebsd / freebsd | 5.3-stable | 5.3-stable.x |
freebsd / freebsd | 5.4-pre-release | 5.4-pre-release.x |
freebsd / freebsd | 5.4-release | 5.4-release.x |
freebsd / freebsd | 5.4-releng | 5.4-releng.x |
redhat / enterprise_linux | 2.1 | 2.1.x |
redhat / enterprise_linux | 3.0 | 3.0.x |
redhat / enterprise_linux | 4.0 | 4.0.x |
ubuntu / ubuntu_linux | 4.1 | 4.1.x |
ubuntu / ubuntu_linux | 5.04 | 5.04.x |
redhat / enterprise_linux_desktop | 3.0 | 3.0.x |
redhat / enterprise_linux_desktop | 4.0 | 4.0.x |
trustix / secure_linux | 2.0 | 2.0.x |
trustix / secure_linux | 2.1 | 2.1.x |
trustix / secure_linux | 2.2 | 2.2.x |
gnu / gzip | 1.2.4 | 1.2.4.x |
gnu / gzip | 1.2.4a | 1.2.4a.x |
gnu / gzip | 1.3.3 | 1.3.3.x |
redhat / linux_advanced_workstation | 2.1 | 2.1.x |
gentoo / linux | - | - |
turbolinux / turbolinux_server | 10.0 | 10.0.x |
turbolinux / turbolinux_server | 7.0 | 7.0.x |
turbolinux / turbolinux_server | 8.0 | 8.0.x |
turbolinux / turbolinux_workstation | 7.0 | 7.0.x |
turbolinux / turbolinux_workstation | 8.0 | 8.0.x |
turbolinux / turbolinux_desktop | 10.0 | 10.0.x |
turbolinux / turbolinux_home | - | - |
turbolinux / turbolinux_appliance_server | 1.0_hosting | 1.0_hosting.x |
turbolinux / turbolinux_appliance_server | 1.0_workgroup | 1.0_workgroup.x |