Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 279387

Summary: app-arch/gzip (and others) FICORA #216853 "crashes with possible security implications"
Product: Gentoo Security Reporter: Robert Buchholz (RETIRED) <rbu>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal CC: vapier
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: A2 [glsa]
Package list:
Runtime testing required: ---

Description Robert Buchholz (RETIRED) gentoo-dev 2009-07-27 20:01:31 UTC 
** Please note that this issue is confidential and no information should be
disclosed until it is made public, see "Whiteboard" for a date **

CERT-FI is coordinating one or more suspected vulnerabilities in gzip.
No details yet, this bug is for tracking purposes.
Comment 1 SpanKY gentoo-dev 2011-03-17 08:17:02 UTC 
seems like this should be closed/unlocked.

http://www.cert.fi/en/reports/2010/vulnerability216853.html

gzip-1.4 has been stable for quite a while now
Comment 2 Tim Sammut (RETIRED) gentoo-dev 2011-03-19 23:01:04 UTC 
(In reply to comment #1)
> seems like this should be closed/unlocked.
> 

Agreed, thanks. Looks like we had another bug too.

*** This bug has been marked as a duplicate of bug 300943 ***