gzip - Arch Linux
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2666 | 1.11-1 | 1.12-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2022-1271 | AVG-2666 | High | No | Arbitrary command execution | Malicious filenames with two or more newlines can make zgrep and xzgrep to write to arbitrary files or (with a GNU sed extension) lead to arbitrary code... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 07 Apr 2022 | ASA-202204-7 | AVG-2666 | High | arbitrary command execution |