Your submission was sent successfully! Close

CVE-2005-0988

Published: 2 May 2005

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

Priority

Unknown

Status

Package Release Status
gzip
Launchpad, Ubuntu, Debian
dapper
Released (1.3.5-12ubuntu0.1)
edgy
Released (1.3.5-14ubuntu1)
feisty
Released (1.3.5-14ubuntu1)
upstream Needs triage