CVE-2005-0988

描述

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

受影響套件(2)

• Debian/gzipfrom 0, < 1.3.5-10
• Debian/gzipfrom 0, < 1.3.2-3woody5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-0988