gzip 1.3.5-9ubuntu3.5 source package in Ubuntu
Changelog
gzip (1.3.5-9ubuntu3.5) hoary-security; urgency=low
* SECURITY UPDATE: Arbitrary code execution or DoS with specially crafted
gzipped/compress'ed files. Tavis Ormandy did a comprehensive security
review, applied his patch to fix the following issues:
* NULL Dereference [CVE-2006-4334].
* Buffer overflows in LZH uncompressor's make_table() [CVE-2006-4335,
CVE-2006-4337].
* Buffer underflow in gzip unpacker's build_tree() [CVE-2006-4336].
* Infinite loop in LZH uncompressor [CVE-2006-4338].
-- Martin Pitt <email address hidden> Thu, 14 Sep 2006 12:35:29 +0000
Upload details
- Uploaded by:
- Martin Pitt
- Uploaded to:
- Hoary
- Original maintainer:
- Bdale Garbee
- Architectures:
- any
- Section:
- base
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| gzip_1.3.5.orig.tar.gz | 323.8 KiB | 631820e566353eafc4bdc0d9d8221c26c7ef6b5d10a254783dbe9bcac88caa07 |
| gzip_1.3.5-9ubuntu3.5.diff.gz | 59.7 KiB | eb79752445200a9c43da7a86384e6e7a83fae34a0501bb2158f6ce700c54a7f1 |
| gzip_1.3.5-9ubuntu3.5.dsc | 570 bytes | a5fbb14ebf703f8ec4f9f755c26c4ac5333f78e4dc9394525a882caa163d157c |
Binary packages built by this source
- gzip: No summary available for gzip in ubuntu hoary.
No description available for gzip in ubuntu hoary.
