Debian Bzip2 vulnerabilities

CVE-2019-12900 [CRITICAL] CVE-2019-12900: bzip2 - BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write... BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. Scope: local bookworm: resolved (fixed in 1.0.6-9.1) bullseye: resolved (fixed in 1.0.6-9.1) forky: resolved (fixed in 1.0.6-9.1) sid: resolved (fixed in 1.0.6-9.1) trixie: resolved (fixed in 1.0.6-9.1)

CVE-2016-3189 [MEDIUM] CVE-2016-3189: bzip2 - Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attack... Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block. Scope: local bookworm: resolved (fixed in 1.0.6-8.1) bullseye: resolved (fixed in 1.0.6-8.1) forky: resolved (fixed in 1.0.6-8.1) sid: resolved (fixed in 1.0.6-8.1

CVE-2011-4089 [MEDIUM] CVE-2011-4089: bzip2 - The bzexe command in bzip2 1.0.5 and earlier generates compressed executables th... The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory. Scope: local bookworm: resolved (fixed in 1.0.6-1) bullseye: resolved (fixed in 1.0.6-1) forky: resolved (fixed in 1.0.6-1) sid: resolved (f

CVE-2010-0405 [MEDIUM] CVE-2010-0405: bzip2 - Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and lib... Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted compressed file. Scope: local bookworm: resolved (fixed in 1.0.5-6) bullseye: resolved (fixed in 1.0.5-6) forky: resolved (fixed in 1.0.5-

CVE-2008-1372 [MEDIUM] CVE-2008-1372: bzip2 - bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a d... bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats. Scope: local bookworm: resolved (fixed in 1.0.5-0.1) bullseye: resolved (fixed in 1.0.5-0.1) forky: resolved (fixed in 1.0.5-0.1) sid: resolved

CVE-2005-1260 [MEDIUM] CVE-2005-1260: bzip2 - bzip2 allows remote attackers to cause a denial of service (hard drive consumpti... bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb"). Scope: local bookworm: resolved (fixed in 1.0.2-7) bullseye: resolved (fixed in 1.0.2-7) forky: resolved (fixed in 1.0.2-7) sid: resolved (fixed in 1.0.2-7) trixie: resolved (fixed in 1.0.2-7)

CVE-2005-0953 [LOW] CVE-2005-0953: bzip2 - Race condition in bzip2 1.0.2 and earlier allows local users to modify permissio... Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete. Scope: local bookworm: resolved (fixed in 1.0.2-6) bullseye: resolved (fixed in 1.0.2-6) forky: resolved (fixed in 1.0.2-6) sid: r

CVE-2005-0758 [MEDIUM] CVE-2005-0758: bzip2 - zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows lo... zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script. Scope: local bookworm: resolved (fixed in 1.0.2-8.1) bullseye: resolved (fixed in 1.0.2-8.1) forky: resolved (fixed in 1.0.2-8.1) sid: resolved (fixed in 1.0.2-8.1) trixie: resolved (fixed in 1.0.2-8