RSS   Vulnerabilities for 'PIGZ'   RSS

2015-01-21
 
CVE-2015-1191

 
 
Multiple directory traversal vulnerabilities in pigz 2.3.1 allow remote attackers to write to arbitrary files via a (1) full pathname or (2) .. (dot dot) in an archive.

 
2014-04-27
 
CVE-2013-0296

CWE-264
 
 
Race condition in pigz before 2.2.5 uses permissions derived from the umask when compressing a file before setting that file's permissions to match those of the original file, which might allow local users to bypass intended access permissions while compression is occurring.

 

 >>> Vendor: ZLIB 2 Products
PIGZ
ZLIB

Copyright 2024, cxsecurity.com

 

Back to Top