Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description GNU compression utility
Version 1.12-1 [core]


Group Affected Fixed Severity Status Ticket
AVG-2666 1.11-1 1.12-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2022-1271 AVG-2666 High No Arbitrary command execution
Malicious filenames with two or more newlines can make zgrep and xzgrep to write to arbitrary files or (with a GNU sed extension) lead to arbitrary code...


Date Advisory Group Severity Type
07 Apr 2022 ASA-202204-7 AVG-2666 High arbitrary command execution