CVE-2005-1260

EPSS 9.8%

bzip2 - infinite loop

Published: 5/19/2005Modified: 4/28/2026

Description

bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").

Affected packages (2)

Debian/bzip2from 0, < 1.0.2-7
Debian/bzip2from 0, < 1.0.2-1.woody5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-1260