1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
PublicDateAtUSN: 2006-09-19
PublicDate: 2006-09-19
Candidate: CVE-2006-4337
References:
http://www.ubuntu.com/usn/usn-349-1
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4337
Description:
Buffer overflow in the make_table function in the LHZ component in gzip
1.3.5 allows context-dependent attackers to execute arbitrary code via a
crafted decoding table in a GZIP archive.
Ubuntu-Description:
Notes:
Bugs:
dapper_gzip: released (1.3.5-12ubuntu0.1)
edgy_gzip: released (1.3.5-14ubuntu1)
feisty_gzip: released (1.3.5-14ubuntu1)
gutsy_gzip: released (1.3.5-14ubuntu1)
hardy_gzip: released (1.3.5-14ubuntu1)
intrepid_gzip: released (1.3.5-14ubuntu1)
jaunty_gzip: released (1.3.5-14ubuntu1)
karmic_gzip: released (1.3.5-14ubuntu1)
devel_gzip: released (1.3.5-14ubuntu1)
dapper_lha: ignored (reached end-of-life)
edgy_lha: needed (reached end-of-life)
feisty_lha: released (1.14i-10.1)
gutsy_lha: released (1.14i-10.1)
hardy_lha: released (1.14i-10.1)
intrepid_lha: released (1.14i-10.1)
jaunty_lha: released (1.14i-10.1)
karmic_lha: released (1.14i-10.1)
devel_lha: released (1.14i-10.1)
upstream_gzip:
upstream_lha:
|