Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bzip2 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2005-1260
bzip2 allows remote malicious users to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Bzip Bzip2
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
Debian Debian Linux 3.0
Debian Debian Linux 3.1
Apple Mac Os X
410
VMScore
CVE-2005-0758
zgrep in gzip prior to 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
Gnu Gzip
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
2 Github repositories
329
VMScore
CVE-2005-0953
Race condition in bzip2 1.0.2 and previous versions allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Bzip Bzip2 0.9.5 D
Bzip Bzip2 0.9 A
Bzip Bzip2 0.9
Bzip Bzip2 0.9.5 A
Bzip Bzip2 1.0
Bzip Bzip2 1.0.1
Bzip Bzip2 1.0.2
Bzip Bzip2 0.9.5 B
Bzip Bzip2 0.9.5 C
Bzip Bzip2 0.9 B
Bzip Bzip2 0.9 C
445
VMScore
CVE-2002-0759
bzip2 prior to 1.0.2 in FreeBSD 4.5 and previous versions, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, does not use the O_EXCL flag to create files during decompression and does not warn the user if an existing file would be overwritten, which could allow malic...
Bzip Bzip2 0.9.5c
Bzip Bzip2 1.0
Bzip Bzip2 0.9.0a
Bzip Bzip2 0.9.0b
Bzip Bzip2 0.9.0c
Bzip Bzip2 0.9.5a
Bzip Bzip2 0.9.5b
Bzip Bzip2 0.9.0
Bzip Bzip2 0.9.5d
Bzip Bzip2 1.0.1
187
VMScore
CVE-2002-0761
bzip2 prior to 1.0.2 in FreeBSD 4.5 and previous versions, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symbolic links instead of the actual files when creating an archive, which could cause the files to be extracted with less restrictive permissions tha...
Bzip Bzip2 0.9.5a
Bzip Bzip2 0.9.5b
Bzip Bzip2 0.9.5c
Bzip Bzip2 0.9.5d
Bzip Bzip2 1.0
Bzip Bzip2 0.9.0
Bzip Bzip2 0.9.0b
Bzip Bzip2 1.0.1
Bzip Bzip2 0.9.0a
Bzip Bzip2 0.9.0c
107
VMScore
CVE-2002-0760
Race condition in bzip2 prior to 1.0.2 in FreeBSD 4.5 and previous versions, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, decompresses files with world-readable permissions before setting the permissions to what is specified in the bzip2 archive, which could all...
Bzip Bzip2 0.9.0
Bzip Bzip2 0.9.0a
Bzip Bzip2 0.9.0b
Bzip Bzip2 0.9.5a
Bzip Bzip2 0.9.5c
Bzip Bzip2 0.9.5d
Bzip Bzip2 1.0
Bzip Bzip2 1.0.1
Bzip Bzip2 0.9.0c
Bzip Bzip2 0.9.5b
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4