Red Hat Customer Portal

Skip to main content

CVE-2005-1228

Impact:
Low
Public Date:
2005-04-18

The MITRE CVE dictionary describes this issue as:

Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.

Find out more about CVE-2005-1228 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 (gzip) RHSA-2005:357 2005-06-13
Red Hat Enterprise Linux 3 (gzip) RHSA-2005:357 2005-06-13
Red Hat Enterprise Linux 4 (gzip) RHSA-2005:357 2005-06-13