CVE-2005-1260
published 2005-05-19CVE-2005-1260: bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression…
PriorityP419medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
6.15%
92.6th percentile
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | < 10.4.11 | 10.4.11 |
| bzip | bzip2 | < 1.0.3 | 1.0.3 |
| bzip | bzip2 | >= 0 < 1.0.2-7 | 1.0.2-7 |
| bzip | bzip2 | >= 0 < 1.0.2-7 | 1.0.2-7 |
| bzip | bzip2 | >= 0 < 1.0.2-7 | 1.0.2-7 |
| bzip | bzip2 | >= 0 < 1.0.2-7 | 1.0.2-7 |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | bzip2 | < bzip2 1.0.2-7 (bookworm) | bzip2 1.0.2-7 (bookworm) |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
BSD
FreeBSD-SA-05:14.bzip2: bzip2 denial of service and permission race vulnerabilities
bsd_advisories·2005-06-29
FreeBSD-SA-05:14.bzip2: bzip2 denial of service and permission race vulnerabilities
FreeBSD-SA-05:14.bzip2 Security Advisory
The FreeBSD Project
Topic: bzip2 denial of service and permission race vulnerabilities
Category: contrib
Module: contrib_bzip2
Announced: 2005-06-29
Credits: Imran Ghory, Chris Evans
Affects: All FreeBSD releases
Corrected: 2005-06-29 21:38:48 UTC (RELENG_5, 5.4-STABLE)
2005-06-29 21:41:03 UTC (RELENG_5_4, 5.4-RELEASE-p3)
2005-06-29 21:42:33 UTC (RELENG_5_3, 5.3-RELEASE-p17)
2005-06-29 21:43:42 UTC (RELENG_4, 4.11-STABLE)
2005-06-29 21:45:14 UTC (RELENG_4_11, 4.11-RELEASE-p11)
2005-06-29 21:46:15 UTC (RELENG_4_10, 4.10-RELEASE-p16)
CVE Name: CAN-2005-0953, CAN-2005-1260
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit
.
I. Backgr
Ubuntu
bzip2 vulnerabilities
vendor_ubuntu·2005-05-17
CVE-2005-1260 bzip2 vulnerabilities
Title: bzip2 vulnerabilities
Summary: bzip2 vulnerabilities
Imran Ghory discovered a race condition in the file permission restore
code of bunzip2. While a user was decompressing a file, a local
attacker with write permissions in the directory of that file could
replace the target file with a hard link. This would cause bzip2 to
restore the file permissions to the hard link target instead of to the
bzip2 output file, which could be exploited to gain read or even write
access to files of other users. (CAN-2005-0953)
Specially crafted bzip2 archives caused an infinite loop in the
decompressor which resulted in an indefinitively large output file
("decompression bomb"). This could be exploited to a Denial of Service
attack due to disk space exhaustion on systems which automatically
process
Red Hat
security flaw
vendor_redhat·2005-02-15·CVSS 5.0
CVE-2005-1260 [MEDIUM] security flaw
security flaw
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Debian
CVE-2005-1260: bzip2 - bzip2 allows remote attackers to cause a denial of service (hard drive consumpti...
vendor_debian·2005·CVSS 5.0
CVE-2005-1260 [MEDIUM] CVE-2005-1260: bzip2 - bzip2 allows remote attackers to cause a denial of service (hard drive consumpti...
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
Scope: local
bookworm: resolved (fixed in 1.0.2-7)
bullseye: resolved (fixed in 1.0.2-7)
forky: resolved (fixed in 1.0.2-7)
sid: resolved (fixed in 1.0.2-7)
trixie: resolved (fixed in 1.0.2-7)
GHSA
GHSA-q292-6rrq-qv64: bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a
ghsa_unreviewed·2022-05-03
CVE-2005-1260 [MEDIUM] CWE-400 GHSA-q292-6rrq-qv64: bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
OSV
CVE-2005-1260: bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a
osv·2005-05-19·CVSS 5.0
CVE-2005-1260 [MEDIUM] CVE-2005-1260: bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a
bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb").
No detection rules found.
No public exploits indexed.
ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.aschttp://docs.info.apple.com/article.html?artnum=307041http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.htmlhttp://secunia.com/advisories/15447http://secunia.com/advisories/19183http://secunia.com/advisories/27274http://secunia.com/advisories/27643http://sunsolve.sun.com/search/document.do?assetkey=1-26-103118-1http://sunsolve.sun.com/search/document.do?assetkey=1-66-200191-1http://www.debian.org/security/2005/dsa-741http://www.fedoralegacy.org/updates/FC2/2005-11-14-FLSA_2005_158801__Updated_bzip2_packages_fix_security_issues.htmlhttp://www.redhat.com/support/errata/RHSA-2005-474.htmlhttp://www.securityfocus.com/bid/13657http://www.securityfocus.com/bid/26444http://www.us-cert.gov/cas/techalerts/TA07-319A.htmlhttp://www.vupen.com/english/advisories/2007/3525http://www.vupen.com/english/advisories/2007/3868https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10700https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A749https://usn.ubuntu.com/127-1/ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.aschttp://docs.info.apple.com/article.html?artnum=307041http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.htmlhttp://secunia.com/advisories/15447http://secunia.com/advisories/19183http://secunia.com/advisories/27274http://secunia.com/advisories/27643http://sunsolve.sun.com/search/document.do?assetkey=1-26-103118-1http://sunsolve.sun.com/search/document.do?assetkey=1-66-200191-1http://www.debian.org/security/2005/dsa-741http://www.fedoralegacy.org/updates/FC2/2005-11-14-FLSA_2005_158801__Updated_bzip2_packages_fix_security_issues.htmlhttp://www.redhat.com/support/errata/RHSA-2005-474.htmlhttp://www.securityfocus.com/bid/13657http://www.securityfocus.com/bid/26444http://www.us-cert.gov/cas/techalerts/TA07-319A.htmlhttp://www.vupen.com/english/advisories/2007/3525http://www.vupen.com/english/advisories/2007/3868https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10700https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A749https://usn.ubuntu.com/127-1/
2005-05-19
Published