Descriptionbzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- SUSE-SR:2008:011, published Fri, 09 May 2008 16:00:00 +0000
List of released packages
|Product(s)||Fixed package version(s)||References|
|SUSE Linux Enterprise Server 11 SP1|| |
|SUSE Linux Enterprise Server 11 SP2 |
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
|SUSE Linux Enterprise Software Development Kit 11 SP4|| |
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA bzip2-1.0.8-3.2