CVE-2006-4334

EPSS 9.1%

gzip - arbitrary code execution

發布日:2006/9/19修改日:2026/4/28

描述

Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference.

受影響套件(3)

Debian/gzipfrom 0, < 1.3.5-15
Debian/gzipfrom 0, < 1.3.5-10sarge2
Debian/gzipfrom 0, < 1.3.5-15+etch1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-4334