Ubuntu
gzip package

lp:ubuntu/dapper-proposed/gzip

  1. Dapper (6.06)
  2. dapper-proposed
Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/dapper-proposed/gzip
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

4. By Martin Pitt

gzip.c: Remove the input file after successfully closing the output file.
Before, copy_stat() removed the output file already, and close() was
called afterwards. However, close() can fail on network file systems, and
thus you would previously end up with a deleted input file and no output
file. Patch backported from version 1.3.12-1 (applied in Edgy and later).
(LP: #69510)

3. By Martin Pitt

* SECURITY UPDATE: Arbitrary code execution or DoS with specially crafted
  gzipped/compress'ed files. Tavis Ormandy did a comprehensive security
  review, applied his patch to fix the following issues:
* NULL Dereference [CVE-2006-4334].
* Buffer overflows in LZH uncompressor's make_table() [CVE-2006-4335,
  CVE-2006-4337].
* Buffer underflow in gzip unpacker's build_tree() [CVE-2006-4336].
* Infinite loop in LZH uncompressor [CVE-2006-4338].

2. By Bdale Garbee

* merge patch from Matt Zimmerman for futex hang due to improper signal
  handling, closes: #310053, #315612
* merge patch to add --rsyncable to the man page, closes: #289616, #295721
* don't return failing result code on harmless warning, closes: #169669

1. By Matt Zimmerman

Import upstream version 1.3.5

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/karmic/gzip
This branch contains Public information 
Everyone can see this information.

Subscribers