Family: Debian Local Security Checks --> Category: infos
[DSA741] DSA-741-1 bzip2 Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Chris Evans discovered that a specially crafted archive can trigger an
infinite loop in bzip2, a high-quality block-sorting file compressor.
During uncompression this results in an indefinitely growing output
file which will finally fill up the disk. On systems that
automatically decompress bzip2 archives this can cause a denial of
For the oldstable distribution (woody) this problem has been fixed in
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your bzip2 package.
Solution : http://www.debian.org/security/2005/dsa-741
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.