Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bzip2 | Bzip | 0.9 (including) | 0.9 (including) |
Bzip2 | Bzip | 0.9.5_a (including) | 0.9.5_a (including) |
Bzip2 | Bzip | 0.9.5_b (including) | 0.9.5_b (including) |
Bzip2 | Bzip | 0.9.5_c (including) | 0.9.5_c (including) |
Bzip2 | Bzip | 0.9.5_d (including) | 0.9.5_d (including) |
Bzip2 | Bzip | 0.9_a (including) | 0.9_a (including) |
Bzip2 | Bzip | 0.9_b (including) | 0.9_b (including) |
Bzip2 | Bzip | 0.9_c (including) | 0.9_c (including) |
Bzip2 | Bzip | 1.0 (including) | 1.0 (including) |
Bzip2 | Bzip | 1.0.1 (including) | 1.0.1 (including) |
Bzip2 | Bzip | 1.0.2 (including) | 1.0.2 (including) |