AVG-2666 log

Package gzip
Status Fixed
Severity High
Type arbitrary command execution
Affected 1.11-1
Fixed 1.12-1
Current 1.13-2 [core]
Ticket None
Created Thu Apr 7 21:51:57 2022
Issue Severity Remote Type Description
CVE-2022-1271 High No Arbitrary command execution
Malicious filenames with two or more newlines can make zgrep and xzgrep to write to arbitrary files or (with a GNU sed extension) lead to arbitrary code...
Date Advisory Package Type
07 Apr 2022 ASA-202204-7 gzip arbitrary command execution