CVE-2006-0950

Publication date 13 March 2006

Last updated 17 July 2025


Ubuntu priority

unalz 0.53 allows user-assisted attackers to overwrite arbitrary files via an ALZ archive with ”..” (dot dot) sequences in a filename.

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
unalz 7.04 feisty
Fixed 0.55-1
6.10 edgy
Fixed 0.55-1
6.06 LTS dapper
Fixed 0.55-1