FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

gzip -- multiple vulnerabilities

Affected packages
gzip < 1.3.12
Affected systems
6.1 < FreeBSD < 6.1_7
6.0 < FreeBSD < 6.0_12
5.5 < FreeBSD < 5.5_5
5.4 < FreeBSD < 5.4_19
5.3 < FreeBSD < 5.3_34
FreeBSD < 4.11_22

Details

VuXML ID 11a84092-8f9f-11db-ab33-000e0c2e438a
Discovery 2006-09-19
Entry 2006-12-19
Modified 2007-06-05

Problem Description

Multiple programming errors have been found in gzip which can be triggered when gzip is decompressing files. These errors include insufficient bounds checks in buffer use, a NULL pointer dereference, and a potential infinite loop.

Impact

The insufficient bounds checks in buffer use can cause gzip to crash, and may permit the execution of arbitrary code. The NULL pointer deference can cause gzip to crash. The infinite loop can cause a Denial-of-Service situation where gzip uses all available CPU time.

Workaround

No workaround is available.

References

CVE Name CVE-2006-4334
CVE Name CVE-2006-4335
CVE Name CVE-2006-4336
CVE Name CVE-2006-4337
CVE Name CVE-2006-4338
FreeBSD Advisory SA-06:21.gzip