bzip2-1.0.6-27.el8_10

エラータID: AXSA:2024-8983:01

Release date: 
Tuesday, November 12, 2024 - 17:15
Subject: 
bzip2-1.0.6-27.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Low
Description: 

The bzip2 packages contain a freely available, high-quality data compressor. It provides both standalone compression and decompression utilities, as well as a shared library for use with other programs.

Security Fix(es):

* bzip2: out-of-bounds write in function BZ2_decompress (CVE-2019-12900)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.

Solution: 

Update packages.

CVEs: 
CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
Additional Info: 

N/A

Download: 

SRPMS
  1. bzip2-1.0.6-27.el8_10.src.rpm
    MD5: d583e2efd17f75731bdba6c083ca9846
    SHA-256: b064d9554d67e30e82bb523afe88f987dee72618603b727791b10ebf1e0c7bc1
    Size: 786.03 kB

Asianux Server 8 for x86_64
  1. bzip2-1.0.6-27.el8_10.x86_64.rpm
    MD5: abec67f065e45ffd76551208175fa57f
    SHA-256: 8e4371fd4d2025a468a6aa4553d403fd2342c33e8add78562eda7914a6f21fdb
    Size: 59.14 kB
  2. bzip2-devel-1.0.6-27.el8_10.i686.rpm
    MD5: f3158306a577184cfaa4bb48eb779122
    SHA-256: 22963780632bab2310eda5a54d543ff03ee106dd49f07f469cdcdf57ecc5f3e0
    Size: 223.56 kB
  3. bzip2-devel-1.0.6-27.el8_10.x86_64.rpm
    MD5: 18f5e82b6a9ca4f821c82d03893ff4a5
    SHA-256: 5d7f69ff2003fcc978eeb8e3a4566507a1dd0d2f6d49f6fdd117ca92afc69268
    Size: 223.53 kB
  4. bzip2-libs-1.0.6-27.el8_10.i686.rpm
    MD5: a58dd75d8f38e429d2b4fb101d6e71cd
    SHA-256: c35f4fab2487a0a3dcba4eece7419583a59f952d1915f835f02bced5aadc069a
    Size: 47.75 kB
  5. bzip2-libs-1.0.6-27.el8_10.x86_64.rpm
    MD5: a96bec6d81e2a4767320f88a1afbad40
    SHA-256: 0e298462c245df9a26006aa3d9f3f92f84db3ed4992aa004c31f9993cb987304
    Size: 46.92 kB