gzip-1.10-6.fc35
zgrep applied to a crafted file name with two or more newlines can no longer overwrite an arbitrary, attacker-selected file.
reproducer:
$ touch foo.gz
$ echo foo | gzip > “$(printf ‘|n;e touch pwnedn#.gz’)”
$ zgrep foo *.gz
(the unfixed version of zgrep creates the file called pwned)
gzip-1.11-3.fc36
zgrep applied to a crafted file name with two or more newlines can no longer overwrite an arbitrary, attacker-selected file.
reproducer:
$ touch foo.gz
$ echo foo | gzip > “$(printf ‘|n;e touch pwnedn#.gz’)”
$ zgrep foo *.gz
(the unfixed version of zgrep creates the file called pwned)
gzip-1.10-5.fc34
zgrep applied to a crafted file name with two or more newlines can no longer overwrite an arbitrary, attacker-selected file.
reproducer:
$ touch foo.gz
$ echo foo | gzip > “$(printf ‘|n;e touch pwnedn#.gz’)”
$ zgrep foo *.gz
(the unfixed version of zgrep creates the file called pwned)
dhcp-4.4.2-12.b1.fc34
Security fix for CVE-2021-25220
rsync-3.2.3-6.fc34
Security fix for CVE-2018-25032
rsync-3.2.3-15.fc36
Security fix for CVE-2018-25032
rsync-3.2.3-9.fc35
Security fix for CVE-2018-25032
rubygem-nokogiri-1.11.7-2.fc34
Backport fix for possible DOS by regex assigned as CVE-2022-24836.
rubygem-nokogiri-1.13.1-2.fc35
Backport fix for possible DOS by regex assigned as CVE-2022-24836.
rubygem-nokogiri-1.13.4-1.fc36
New version 1.13.4 is released. This new version addresses possible DOS by regex, assigned as CVE-2022-24836.
