CVE-2005-0988

EPSS 0.11%

gzip - several

Published: 5/2/2005Modified: 4/28/2026
Also known as:DEBIAN-CVE-2005-0988

Description

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

Affected packages (2)

References (1)