gzip-1.3.5-11.1.1.AXS3
エラータID: AXSA:2010-76:01
Release date:
Thursday, January 28, 2010 - 14:18
Subject:
gzip-1.3.5-11.1.1.AXS3
Affected Channels:
Asianux Server 3 for x86
Asianux Server 3 for x86_64
Severity:
Moderate
Description:
The gzip package contains the popular GNU gzip data compression program. Gzipped files have a .gz extension.
Security bugs fixed with this release:
CVE-2010-0001
No description available at the time of writing, please refer to the CVE link below.
Solution:
Update packages
CVEs:
CVE-2010-0001
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error.
Additional Info:
N/A
Download:
SRPMS
- gzip-1.3.5-11.1.1.AXS3.src.rpm
MD5: 16d8dd748c2161f602d1c2238745a8f6
SHA-256: a32b93cab4bd034f93e165f1463f8ff981a4dfef17b643871bf7fa1c1cd743ed
Size: 350.49 kB
Asianux Server 3 for x86
- gzip-1.3.5-11.1.1.AXS3.i386.rpm
MD5: 4f6bdeebf6a6636686c2e1e11f8e4616
SHA-256: 590624da18bc3a875185767da10c0f969caa8e917d9617e26d43fb885fbbbfd6
Size: 102.01 kB
Asianux Server 3 for x86_64
- gzip-1.3.5-11.1.1.AXS3.x86_64.rpm
MD5: 18053e734e287874b270490816b7b3df
SHA-256: 8373c0655f893afcc601fa60daa41fb2a542610c3570586ca3a108077c2ed285
Size: 104.48 kB
日本語