279387 – app-arch/gzip (and others) FICORA #216853 "crashes with possible security implications"

Bug 279387 - app-arch/gzip (and others) FICORA #216853 "crashes with possible security implications"

Summary: app-arch/gzip (and others) FICORA #216853 "crashes with possible security imp...

Status:	RESOLVED DUPLICATE of bug 300943

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	A2 [glsa]
Keywords:

Depends on:
Blocks:

Reported:	2009-07-27 20:01 UTC by Robert Buchholz (RETIRED)
Modified:	2011-03-19 23:01 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Buchholz (RETIRED) gentoo-dev

2009-07-27 20:01:31 UTC

** Please note that this issue is confidential and no information should be
disclosed until it is made public, see "Whiteboard" for a date **

CERT-FI is coordinating one or more suspected vulnerabilities in gzip.
No details yet, this bug is for tracking purposes.

Comment 1 SpanKY gentoo-dev

2011-03-17 08:17:02 UTC

seems like this should be closed/unlocked.

http://www.cert.fi/en/reports/2010/vulnerability216853.html

gzip-1.4 has been stable for quite a while now

Comment 2 Tim Sammut (RETIRED) gentoo-dev

2011-03-19 23:01:04 UTC

(In reply to comment #1)
> seems like this should be closed/unlocked.
> 

Agreed, thanks. Looks like we had another bug too.

*** This bug has been marked as a duplicate of bug 300943 ***