Family: Debian Local Security Checks --> Category: infos
[DSA588] DSA-588-1 gzip Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Trustix developers discovered insecure temporary file creation in
supplemental scripts in the gzip package which may allow local users
to overwrite files via a symlink attack.
For the stable distribution (woody) these problems have been fixed in
The unstable distribution (sid) is not affected by these problems.
We recommend that you upgrade your gzip package.
Solution : http://www.debian.org/security/2004/dsa-588
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.