Your submission was sent successfully! Close

CVE-2005-1228

Published: 2 May 2005

Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.

Priority

Unknown

Status

Package Release Status
gzip
Launchpad, Ubuntu, Debian
dapper
Released (1.3.5-12ubuntu0.1)
edgy
Released (1.3.5-14ubuntu1)
feisty
Released (1.3.5-14ubuntu1)
upstream Needs triage