CVE-2010-0001

Priority
Medium
Description
Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on
64-bit platforms, as used in ncompress and probably others, allows remote
attackers to cause a denial of service (application crash) or possibly
execute arbitrary code via a crafted archive that uses LZW compression,
leading to an array index error.
References
Assigned-to
mdeslaur
Package
Source: gzip (LP Ubuntu Debian)
Upstream:released (1.3.12-9)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:37:36 UTC (commit 9756)