CVE-2005-0988

Description

Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.

Affected products

FreeBSD / FreeBSD4.6 – 4.6
FreeBSD / FreeBSD4.7 – 4.7
FreeBSD / FreeBSD4.7 – 4.7
FreeBSD / FreeBSD4.7 – 4.7
FreeBSD / FreeBSD4.7 – 4.7
FreeBSD / FreeBSD4.8 – 4.8
FreeBSD / FreeBSD4.8 – 4.8
FreeBSD / FreeBSD4.8 – 4.8
FreeBSD / FreeBSD4.8 – 4.8
FreeBSD / FreeBSD4.9 – 4.9
FreeBSD / FreeBSD4.9 – 4.9
FreeBSD / FreeBSD4.9 – 4.9
FreeBSD / FreeBSD4.10 – 4.10
FreeBSD / FreeBSD4.10 – 4.10
FreeBSD / FreeBSD4.10 – 4.10
FreeBSD / FreeBSD4.10 – 4.10
FreeBSD / FreeBSD4.11 – 4.11
FreeBSD / FreeBSD4.11 – 4.11
FreeBSD / FreeBSD4.11 – 4.11
FreeBSD / FreeBSD5.0 – 5.0
FreeBSD / FreeBSD5.0 – 5.0
FreeBSD / FreeBSD5.0 – 5.0
FreeBSD / FreeBSD5.0 – 5.0
FreeBSD / FreeBSD5.1 – 5.1
FreeBSD / FreeBSD5.1 – 5.1
FreeBSD / FreeBSD5.1 – 5.1
FreeBSD / FreeBSD5.1 – 5.1
FreeBSD / FreeBSD5.1 – 5.1
FreeBSD / FreeBSD5.2 – 5.2
FreeBSD / FreeBSD5.2.1 – 5.2.1
FreeBSD / FreeBSD5.2.1 – 5.2.1
FreeBSD / FreeBSD5.3 – 5.3
FreeBSD / FreeBSD5.3 – 5.3
FreeBSD / FreeBSD5.3 – 5.3
FreeBSD / FreeBSD5.3 – 5.3
FreeBSD / FreeBSD5.4 – 5.4
FreeBSD / FreeBSD5.4 – 5.4
FreeBSD / FreeBSD5.4 – 5.4
FreeBSD / FreeBSD4.0 – 4.0
FreeBSD / FreeBSD4.0 – 4.0
FreeBSD / FreeBSD4.0 – 4.0
FreeBSD / FreeBSD4.1 – 4.1
FreeBSD / FreeBSD4.1.1 – 4.1.1
FreeBSD / FreeBSD4.1.1 – 4.1.1
FreeBSD / FreeBSD4.1.1 – 4.1.1
FreeBSD / FreeBSD4.2 – 4.2
FreeBSD / FreeBSD4.2 – 4.2
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.3 – 4.3
FreeBSD / FreeBSD4.4 – 4.4
FreeBSD / FreeBSD4.4 – 4.4
FreeBSD / FreeBSD4.4 – 4.4
FreeBSD / FreeBSD4.4 – 4.4
FreeBSD / FreeBSD4.5 – 4.5
FreeBSD / FreeBSD4.5 – 4.5
FreeBSD / FreeBSD4.5 – 4.5
FreeBSD / FreeBSD4.5 – 4.5
FreeBSD / FreeBSD4.5 – 4.5
FreeBSD / FreeBSD4.6 – 4.6
FreeBSD / FreeBSD4.6 – 4.6
FreeBSD / FreeBSD4.6 – 4.6
FreeBSD / FreeBSD4.6 – 4.6
FreeBSD / FreeBSD4.6.2 – 4.6.2
FreeBSD / FreeBSD4.7 – 4.7
gentoo / linux
gnu / gzip1.3.3 – 1.3.3
gnu / gzip1.2.4a – 1.2.4a
gnu / gzip1.2.4 – 1.2.4
RedHat / enterprise_linux2.1 – 2.1
RedHat / enterprise_linux2.1 – 2.1
RedHat / enterprise_linux3.0 – 3.0
RedHat / enterprise_linux3.0 – 3.0
RedHat / enterprise_linux3.0 – 3.0
RedHat / enterprise_linux4.0 – 4.0
RedHat / enterprise_linux4.0 – 4.0
RedHat / enterprise_linux4.0 – 4.0
RedHat / enterprise_linux2.1 – 2.1
RedHat / enterprise_linux2.1 – 2.1
RedHat / enterprise_linux2.1 – 2.1
RedHat / enterprise_linux2.1 – 2.1
RedHat / enterprise_linux_desktop4.0 – 4.0
RedHat / enterprise_linux_desktop3.0 – 3.0
RedHat / linux_advanced_workstation2.1 – 2.1
RedHat / linux_advanced_workstation2.1 – 2.1
trustix / secure_linux2.1 – 2.1
trustix / secure_linux2.0 – 2.0
trustix / secure_linux2.2 – 2.2
turbolinux / turbolinux_appliance_server1.0_hosting – 1.0_hosting
turbolinux / turbolinux_appliance_server1.0_workgroup – 1.0_workgroup
turbolinux / turbolinux_desktop10.0 – 10.0
turbolinux / turbolinux_home
turbolinux / turbolinux_server10.0 – 10.0
turbolinux / turbolinux_server7.0 – 7.0
turbolinux / turbolinux_server8.0 – 8.0
turbolinux / turbolinux_workstation8.0 – 8.0
turbolinux / turbolinux_workstation7.0 – 7.0
Ubuntu / ubuntu_linux5.04 – 5.04
Ubuntu / ubuntu_linux4.1 – 4.1
Ubuntu / ubuntu_linux5.04 – 5.04
Ubuntu / ubuntu_linux5.04 – 5.04
Ubuntu / ubuntu_linux4.1 – 4.1

CVE-2005-0988

Description

Affected products

References