2005-05-02 06:00:00 2017-10-11 03:30:02

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

Vector

LOCAL

Complexity

HIGH

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
Freebsd Freebsd 4.4 Release p42 (not an official CPE) FreeBSD 4.10 Turbolinux Turbolinux workstation 7.0 (not an official CPE) Redhat Enterprise linux 3.0 Advanced server (not an official CPE) Redhat Enterprise linux 2.1 Enterprise server (not an official CPE) Redhat Enterprise linux 3.0 Workstation server (not an official CPE) FreeBSD 4.1.1 Freebsd Freebsd 4.7 Release p17 (not an official CPE) Freebsd Freebsd 4.5 Stable (not an official CPE) Freebsd Freebsd 4.4 Stable (not an official CPE) Freebsd Freebsd 4.7 Stable (not an official CPE) Freebsd Freebsd 5.1 Release p5 (not an official CPE) Freebsd Freebsd 4.6 Stable (not an official CPE) Redhat Enterprise linux 2.1 Advanced server ia64 (not an official CPE) Freebsd Freebsd 4.6 Release p20 (not an official CPE) Freebsd Freebsd 5.2.1 Releng (not an official CPE) Freebsd Freebsd 4.11 Stable (not an official CPE) Ubuntu Ubuntu linux 5.04 Amd64 (not an official CPE) Redhat Enterprise linux 2.1 Advanced server (not an official CPE) Turbolinux Turbolinux appliance server 1.0 workgroup (not an official CPE) Freebsd Freebsd 4.1.1 Stable (not an official CPE) Freebsd Freebsd 4.1.1 Release (not an official CPE) Red Hat Desktop 3.0 Freebsd Freebsd 4.11 Release p3 (not an official CPE) Ubuntu Ubuntu linux 4.1 Ppc (not an official CPE) Freebsd Freebsd 5.2.1 Release (not an official CPE) FreeBSD 4.6.2 Turbolinux Turbolinux server 10.0 (not an official CPE) Redhat Enterprise linux 2.1 Workstation ia64 (not an official CPE) Freebsd Freebsd 4.11 Releng (not an official CPE) Freebsd Freebsd 4.10 Releng (not an official CPE) Redhat Linux advanced workstation 2.1 Ia64 (not an official CPE) Turbolinux Turbolinux server 7.0 (not an official CPE) Redhat Enterprise linux 2.1 Workstation (not an official CPE) Redhat Enterprise linux 2.1 Enterprise server ia64 (not an official CPE) Freebsd Freebsd 5.4 Pre-release (not an official CPE) Freebsd Freebsd 4.0 Alpha (not an official CPE) FreeBSD 5.2 Turbolinux Turbolinux workstation 8.0 (not an official CPE) Freebsd Freebsd 4.10 Release (not an official CPE) FreeBSD 5.3 FreeBSD 5.1 Redhat Enterprise linux 4.0 Enterprise server (not an official CPE) Freebsd Freebsd 5.1 Alpha (not an official CPE) Red Hat Desktop 4.0 FreeBSD 5.0 Freebsd Freebsd 4.9 Pre-release (not an official CPE) Freebsd Freebsd 4.8 Pre-release (not an official CPE) Turbolinux Turbolinux home (not an official CPE) Freebsd Freebsd 4.5 Release (not an official CPE) Freebsd Freebsd 4.6 Release (not an official CPE) Freebsd Freebsd 4.7 Release (not an official CPE) Ubuntu Ubuntu linux 4.1 Ia64 (not an official CPE) Freebsd Freebsd 4.3 Release (not an official CPE) Turbolinux Turbolinux desktop 10.0 (not an official CPE) Turbolinux Turbolinux server 8.0 (not an official CPE) Freebsd Freebsd 4.8 Release p6 (not an official CPE) Gentoo Linux Freebsd Freebsd 5.0 Releng (not an official CPE) FreeBSD 4.8 FreeBSD 4.9 FreeBSD 4.6 Freebsd Freebsd 5.0 Alpha (not an official CPE) Freebsd Freebsd 5.4 Releng (not an official CPE) FreeBSD 4.3 Freebsd Freebsd 5.3 Releng (not an official CPE) Freebsd Freebsd 5.1 Releng (not an official CPE) FreeBSD 4.7 FreeBSD 4.4 FreeBSD 4.5 FreeBSD 4.2 Turbolinux Turbolinux appliance server 1.0 hosting (not an official CPE) Freebsd Freebsd 4.3 Releng (not an official CPE) Freebsd Freebsd 4.4 Releng (not an official CPE) Ubuntu Ubuntu linux 5.04 Powerpc (not an official CPE) Freebsd Freebsd 4.5 Releng (not an official CPE) Freebsd Freebsd 4.6 Releng (not an official CPE) Freebsd Freebsd 4.7 Releng (not an official CPE) Freebsd Freebsd 4.8 Releng (not an official CPE) Freebsd Freebsd 4.9 Releng (not an official CPE) Redhat Enterprise linux 4.0 Workstation (not an official CPE) Freebsd Freebsd 4.0 Releng (not an official CPE) Freebsd Freebsd 4.2 Stable (not an official CPE) Freebsd Freebsd 4.3 Stable (not an official CPE) Freebsd Freebsd 5.0 Release p14 (not an official CPE) Redhat Linux advanced workstation 2.1 Itanium processor (not an official CPE) Freebsd Freebsd 4.5 Release p32 (not an official CPE) Trustix Secure Linux 2.1 Trustix Secure Linux 2.0 Freebsd Freebsd 5.3 Stable (not an official CPE) Ubuntu Ubuntu linux 5.04 I386 (not an official CPE) Freebsd Freebsd 5.1 Release (not an official CPE) Freebsd Freebsd 4.3 Release p38 (not an official CPE) Trustix Secure Linux 2.2 Freebsd Freebsd 5.4 Release (not an official CPE) Freebsd Freebsd 5.3 Release (not an official CPE) FreeBSD 4.1 FreeBSD 4.0 Freebsd Freebsd 4.10 Release p8 (not an official CPE) Redhat Enterprise linux 3.0 Enterprise server (not an official CPE) Redhat Enterprise linux 4.0 Advanced server (not an official CPE)