Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu gzip 1.3.5 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4335
Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GZIP archiv...
Gzip Gzip 1.3.5
7.5
CVSSv2
CVE-2006-4336
Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent malicious users to execute arbitrary code via a crafted leaf count table that causes a write to a negative index.
Gzip Gzip 1.3.5
7.5
CVSSv2
CVE-2006-4337
Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent malicious users to execute arbitrary code via a crafted decoding table in a GZIP archive.
Gzip Gzip 1.3.5
6.8
CVSSv2
CVE-2010-0001
Integer underflow in the unlzw function in unlzw.c in gzip prior to 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses...
Gnu Gzip
Gnu Gzip 1.3.12
Gnu Gzip 1.3.1
Gnu Gzip 1.3.8
Gnu Gzip 1.3
Gnu Gzip 1.3.3
Gnu Gzip 1.3.11
Gnu Gzip 1.3.6
Gnu Gzip 1.3.2
Gnu Gzip 1.2.4
Gnu Gzip 1.3.10
Gnu Gzip 1.3.5
Gnu Gzip 1.3.7
Gnu Gzip 1.2.4a
Gnu Gzip 1.3.9
Gnu Gzip 1.3.4
6.8
CVSSv2
CVE-2009-2624
The huft_build function in inflate.c in gzip prior to 1.3.13 creates a hufts (aka huffman) table that is too small, which allows remote malicious users to cause a denial of service (application crash or infinite loop) or possibly execute arbitrary code via a crafted archive. NOTE...
Gnu Gzip 1.3.6
Gnu Gzip 1.3.5
Gnu Gzip
Gnu Gzip 1.3.10
Gnu Gzip 1.3
Gnu Gzip 1.3.2
Gnu Gzip 1.3.1
Gnu Gzip 1.3.9
Gnu Gzip 1.3.8
Gnu Gzip 1.3.7
Gnu Gzip 1.2.4
Gnu Gzip 1.2.4a
Gnu Gzip 1.3.11
Gnu Gzip 1.3.4
Gnu Gzip 1.3.3
5
CVSSv2
CVE-2006-4334
Unspecified vulnerability in gzip 1.3.5 allows context-dependent malicious users to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference.
Gzip Gzip 1.3.5
5
CVSSv2
CVE-2006-4338
unlzh.c in the LHZ component in gzip 1.3.5 allows context-dependent malicious users to cause a denial of service (infinite loop) via a crafted GZIP archive.
Gzip Gzip 1.3.5
5
CVSSv2
CVE-2005-1228
Directory traversal vulnerability in gunzip -N in gzip 1.2.4 up to and including 1.3.5 allows remote malicious users to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.
Gnu Gzip 1.2.4
Gnu Gzip 1.3.3
4.6
CVSSv2
CVE-2005-0758
zgrep in gzip prior to 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
Gnu Gzip
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
2 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started