CVE-2005-0953

Publication date 2 May 2005

Last updated 24 July 2024

Ubuntu priority

Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
bzip2	7.04 feisty	Fixed 1.0.3-0ubuntu2
	6.10 edgy	Fixed 1.0.3-0ubuntu2
	6.06 LTS dapper	Fixed 1.0.3-0ubuntu2

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-127-1
bzip2 vulnerabilities
17 May 2005

Other references

https://www.cve.org/CVERecord?id=CVE-2005-0953