cvelistv5 - cve-2005-1228

CVE-2005-1228 (GCVE-0-2005-1228)

Vulnerability from cvelistv5

Published

2005-04-22 04:00

Modified

2024-08-07 21:44

Severity ?

CWE

Summary

Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.

References

►

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

gsd-2005-1228

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2005-1228

Aliases

CVE-2005-1228

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2005-1228",
    "description": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.",
    "id": "GSD-2005-1228",
    "references": [
      "https://www.debian.org/security/2005/dsa-752",
      "https://access.redhat.com/errata/RHSA-2005:357"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2005-1228"
      ],
      "details": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.",
      "id": "GSD-2005-1228",
      "modified": "2023-12-13T01:20:11.957610Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2005-1228",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "APPLE-SA-2006-08-01",
            "refsource": "APPLE",
            "url": "http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html"
          },
          {
            "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255",
            "refsource": "CONFIRM",
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255"
          },
          {
            "name": "15721",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/15721"
          },
          {
            "name": "gzip-n-directory-traversal(20199)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20199"
          },
          {
            "name": "22033",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22033"
          },
          {
            "name": "ADV-2006-3101",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/3101"
          },
          {
            "name": "21253",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/21253"
          },
          {
            "name": "DSA-752",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2005/dsa-752"
          },
          {
            "name": "101816",
            "refsource": "SUNALERT",
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1"
          },
          {
            "name": "RHSA-2005:357",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2005-357.html"
          },
          {
            "name": "19289",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/19289"
          },
          {
            "name": "TA06-214A",
            "refsource": "CERT",
            "url": "http://www.us-cert.gov/cas/techalerts/TA06-214A.html"
          },
          {
            "name": "15047",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/15047"
          },
          {
            "name": "oval:org.mitre.oval:def:382",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382"
          },
          {
            "name": "oval:org.mitre.oval:def:170",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170"
          },
          {
            "name": "oval:org.mitre.oval:def:11057",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057"
          },
          {
            "name": "20050420 gzip directory traversal vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://marc.info/?l=bugtraq\u0026m=111402732406477\u0026w=2"
          },
          {
            "name": "SCOSA-2005.58",
            "refsource": "SCO",
            "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt"
          },
          {
            "name": "18100",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/18100"
          },
          {
            "name": "SSA:2006-262",
            "refsource": "SLACKWARE",
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.555852"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:gnu:gzip:1.2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:gnu:gzip:1.3.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2005-1228"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255"
            },
            {
              "name": "15047",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/15047"
            },
            {
              "name": "DSA-752",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2005/dsa-752"
            },
            {
              "name": "SCOSA-2005.58",
              "refsource": "SCO",
              "tags": [],
              "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt"
            },
            {
              "name": "18100",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/18100"
            },
            {
              "name": "RHSA-2005:357",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2005-357.html"
            },
            {
              "name": "101816",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1"
            },
            {
              "name": "APPLE-SA-2006-08-01",
              "refsource": "APPLE",
              "tags": [],
              "url": "http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html"
            },
            {
              "name": "21253",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/21253"
            },
            {
              "name": "15721",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/15721"
            },
            {
              "name": "19289",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/19289"
            },
            {
              "name": "SSA:2006-262",
              "refsource": "SLACKWARE",
              "tags": [],
              "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.555852"
            },
            {
              "name": "22033",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22033"
            },
            {
              "name": "TA06-214A",
              "refsource": "CERT",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA06-214A.html"
            },
            {
              "name": "ADV-2006-3101",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/3101"
            },
            {
              "name": "20050420 gzip directory traversal vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=111402732406477\u0026w=2"
            },
            {
              "name": "gzip-n-directory-traversal(20199)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20199"
            },
            {
              "name": "oval:org.mitre.oval:def:382",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382"
            },
            {
              "name": "oval:org.mitre.oval:def:170",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170"
            },
            {
              "name": "oval:org.mitre.oval:def:11057",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-11T01:30Z",
      "publishedDate": "2005-05-02T04:00Z"
    }
  }
}

fkie_cve-2005-1228

Vulnerability from fkie_nvd

Published

2005-05-02 04:00

Modified

2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt
cve@mitre.org	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255	Patch
cve@mitre.org	http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html
cve@mitre.org	http://marc.info/?l=bugtraq&m=111402732406477&w=2
cve@mitre.org	http://rhn.redhat.com/errata/RHSA-2005-357.html
cve@mitre.org	http://secunia.com/advisories/15047	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/18100
cve@mitre.org	http://secunia.com/advisories/21253
cve@mitre.org	http://secunia.com/advisories/22033
cve@mitre.org	http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.555852
cve@mitre.org	http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1
cve@mitre.org	http://www.debian.org/security/2005/dsa-752
cve@mitre.org	http://www.osvdb.org/15721
cve@mitre.org	http://www.securityfocus.com/bid/19289
cve@mitre.org	http://www.us-cert.gov/cas/techalerts/TA06-214A.html	US Government Resource
cve@mitre.org	http://www.vupen.com/english/advisories/2006/3101
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/20199
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382
af854a3a-2127-422b-91ae-364da2661108	ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt
af854a3a-2127-422b-91ae-364da2661108	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255	Patch
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=111402732406477&w=2
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2005-357.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/15047	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18100
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/21253
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22033
af854a3a-2127-422b-91ae-364da2661108	http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.555852
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2005/dsa-752
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/15721
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/19289
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA06-214A.html	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/3101
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/20199
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382

Impacted products

	Vendor	Product	Version
	gnu	gzip	1.2.4
	gnu	gzip	1.3.3

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gnu:gzip:1.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D50385A-1D5D-4517-B5FA-1BB60BA4C484",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:gzip:1.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "079F39E2-69BF-47AC-87CF-A47D37EA27F8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file."
    }
  ],
  "id": "CVE-2005-1228",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-05-02T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=111402732406477\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-357.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/15047"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/18100"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/21253"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22033"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.555852"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2005/dsa-752"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/15721"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/19289"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-214A.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/3101"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20199"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=111402732406477\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-357.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/15047"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/18100"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/21253"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22033"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.555852"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2005/dsa-752"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/15721"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/19289"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-214A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/3101"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20199"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vendorComments": [
    {
      "comment": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
      "lastModified": "2007-03-14T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

rhsa-2005:357

Vulnerability from csaf_redhat

Published

2005-06-13 12:12

Modified

2024-11-21 23:38

Summary

Red Hat Security Advisory: gzip security update

Notes

Topic

An updated gzip package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team.

Details

The gzip package contains the GNU gzip data compression program. A bug was found in the way zgrep processes file names. If a user can be tricked into running zgrep on a file with a carefully crafted file name, arbitrary commands could be executed as the user running zgrep. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0758 to this issue. A bug was found in the way gunzip modifies permissions of files being decompressed. A local attacker with write permissions in the directory in which a victim is decompressing a file could remove the file being written and replace it with a hard link to a different file owned by the victim. gunzip then gives the linked file the permissions of the uncompressed file. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0988 to this issue. A directory traversal bug was found in the way gunzip processes the -N flag. If a victim decompresses a file with the -N flag, gunzip fails to sanitize the path which could result in a file owned by the victim being overwritten. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1228 to this issue. Users of gzip should upgrade to this updated package, which contains backported patches to correct these issues.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated gzip package is now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The gzip package contains the GNU gzip data compression program.\n\nA bug was found in the way zgrep processes file names. If a user can be\ntricked into running zgrep on a file with a carefully crafted file name,\narbitrary commands could be executed as the user running zgrep. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2005-0758 to this issue.\n\nA bug was found in the way gunzip modifies permissions of files being\ndecompressed. A local attacker with write permissions in the directory in\nwhich a victim is decompressing a file could remove the file being written\nand replace it with a hard link to a different file owned by the victim. \ngunzip then gives the linked file the permissions of the uncompressed file.\nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2005-0988 to this issue.\n\nA directory traversal bug was found in the way gunzip processes the -N\nflag. If a victim decompresses a file with the -N flag, gunzip fails to\nsanitize the path which could result in a file owned by the victim being\noverwritten. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2005-1228 to this issue.\n\nUsers of gzip should upgrade to this updated package, which contains\nbackported patches to correct these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2005:357",
        "url": "https://access.redhat.com/errata/RHSA-2005:357"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "121514",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=121514"
      },
      {
        "category": "external",
        "summary": "155745",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=155745"
      },
      {
        "category": "external",
        "summary": "156266",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=156266"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_357.json"
      }
    ],
    "title": "Red Hat Security Advisory: gzip security update",
    "tracking": {
      "current_release_date": "2024-11-21T23:38:09+00:00",
      "generator": {
        "date": "2024-11-21T23:38:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2005:357",
      "initial_release_date": "2005-06-13T12:12:00+00:00",
      "revision_history": [
        {
          "date": "2005-06-13T12:12:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2005-06-13T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T23:38:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 4",
                  "product_id": "4AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop version 4",
                  "product_id": "4Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 4",
                  "product_id": "4ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 4",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 4",
                  "product_id": "4WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.ia64",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.ia64",
                  "product_id": "gzip-0:1.3.3-15.rhel4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
                  "product_id": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-15.rhel4?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.ia64",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.ia64",
                  "product_id": "gzip-0:1.3.3-12.rhel3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
                  "product_id": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-12.rhel3?arch=ia64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.src",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.src",
                  "product_id": "gzip-0:1.3.3-15.rhel4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.src",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.src",
                  "product_id": "gzip-0:1.3.3-12.rhel3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.x86_64",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.x86_64",
                  "product_id": "gzip-0:1.3.3-15.rhel4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
                  "product_id": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-15.rhel4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.x86_64",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.x86_64",
                  "product_id": "gzip-0:1.3.3-12.rhel3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
                  "product_id": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-12.rhel3?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.i386",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.i386",
                  "product_id": "gzip-0:1.3.3-15.rhel4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
                  "product_id": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-15.rhel4?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.i386",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.i386",
                  "product_id": "gzip-0:1.3.3-12.rhel3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
                  "product_id": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-12.rhel3?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.ppc",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.ppc",
                  "product_id": "gzip-0:1.3.3-15.rhel4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
                  "product_id": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-15.rhel4?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.ppc",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.ppc",
                  "product_id": "gzip-0:1.3.3-12.rhel3.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
                  "product_id": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-12.rhel3?arch=ppc"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.s390x",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.s390x",
                  "product_id": "gzip-0:1.3.3-15.rhel4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
                  "product_id": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-15.rhel4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.s390x",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.s390x",
                  "product_id": "gzip-0:1.3.3-12.rhel3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
                  "product_id": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-12.rhel3?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-15.rhel4.s390",
                "product": {
                  "name": "gzip-0:1.3.3-15.rhel4.s390",
                  "product_id": "gzip-0:1.3.3-15.rhel4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-15.rhel4?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
                  "product_id": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-15.rhel4?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-0:1.3.3-12.rhel3.s390",
                "product": {
                  "name": "gzip-0:1.3.3-12.rhel3.s390",
                  "product_id": "gzip-0:1.3.3-12.rhel3.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip@1.3.3-12.rhel3?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
                "product": {
                  "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
                  "product_id": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gzip-debuginfo@1.3.3-12.rhel3?arch=s390"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.src"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.src"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.src"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.src"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.src as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.src"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.src",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
          "product_id": "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.src as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.src"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.src",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
          "product_id": "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.src as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.src"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.src",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
          "product_id": "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.src as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.src"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.src",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.i386 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.i386",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
        "relates_to_product_reference": "4WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
          "product_id": "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        },
        "product_reference": "gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
        "relates_to_product_reference": "4WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2005-0758",
      "discovery_date": "2004-04-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617573"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
          "title": "Statement"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:gzip-0:1.3.3-12.rhel3.i386",
          "3AS:gzip-0:1.3.3-12.rhel3.ia64",
          "3AS:gzip-0:1.3.3-12.rhel3.ppc",
          "3AS:gzip-0:1.3.3-12.rhel3.s390",
          "3AS:gzip-0:1.3.3-12.rhel3.s390x",
          "3AS:gzip-0:1.3.3-12.rhel3.src",
          "3AS:gzip-0:1.3.3-12.rhel3.x86_64",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3Desktop:gzip-0:1.3.3-12.rhel3.i386",
          "3Desktop:gzip-0:1.3.3-12.rhel3.ia64",
          "3Desktop:gzip-0:1.3.3-12.rhel3.ppc",
          "3Desktop:gzip-0:1.3.3-12.rhel3.s390",
          "3Desktop:gzip-0:1.3.3-12.rhel3.s390x",
          "3Desktop:gzip-0:1.3.3-12.rhel3.src",
          "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3ES:gzip-0:1.3.3-12.rhel3.i386",
          "3ES:gzip-0:1.3.3-12.rhel3.ia64",
          "3ES:gzip-0:1.3.3-12.rhel3.ppc",
          "3ES:gzip-0:1.3.3-12.rhel3.s390",
          "3ES:gzip-0:1.3.3-12.rhel3.s390x",
          "3ES:gzip-0:1.3.3-12.rhel3.src",
          "3ES:gzip-0:1.3.3-12.rhel3.x86_64",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3WS:gzip-0:1.3.3-12.rhel3.i386",
          "3WS:gzip-0:1.3.3-12.rhel3.ia64",
          "3WS:gzip-0:1.3.3-12.rhel3.ppc",
          "3WS:gzip-0:1.3.3-12.rhel3.s390",
          "3WS:gzip-0:1.3.3-12.rhel3.s390x",
          "3WS:gzip-0:1.3.3-12.rhel3.src",
          "3WS:gzip-0:1.3.3-12.rhel3.x86_64",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "4AS:gzip-0:1.3.3-15.rhel4.i386",
          "4AS:gzip-0:1.3.3-15.rhel4.ia64",
          "4AS:gzip-0:1.3.3-15.rhel4.ppc",
          "4AS:gzip-0:1.3.3-15.rhel4.s390",
          "4AS:gzip-0:1.3.3-15.rhel4.s390x",
          "4AS:gzip-0:1.3.3-15.rhel4.src",
          "4AS:gzip-0:1.3.3-15.rhel4.x86_64",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4Desktop:gzip-0:1.3.3-15.rhel4.i386",
          "4Desktop:gzip-0:1.3.3-15.rhel4.ia64",
          "4Desktop:gzip-0:1.3.3-15.rhel4.ppc",
          "4Desktop:gzip-0:1.3.3-15.rhel4.s390",
          "4Desktop:gzip-0:1.3.3-15.rhel4.s390x",
          "4Desktop:gzip-0:1.3.3-15.rhel4.src",
          "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4ES:gzip-0:1.3.3-15.rhel4.i386",
          "4ES:gzip-0:1.3.3-15.rhel4.ia64",
          "4ES:gzip-0:1.3.3-15.rhel4.ppc",
          "4ES:gzip-0:1.3.3-15.rhel4.s390",
          "4ES:gzip-0:1.3.3-15.rhel4.s390x",
          "4ES:gzip-0:1.3.3-15.rhel4.src",
          "4ES:gzip-0:1.3.3-15.rhel4.x86_64",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4WS:gzip-0:1.3.3-15.rhel4.i386",
          "4WS:gzip-0:1.3.3-15.rhel4.ia64",
          "4WS:gzip-0:1.3.3-15.rhel4.ppc",
          "4WS:gzip-0:1.3.3-15.rhel4.s390",
          "4WS:gzip-0:1.3.3-15.rhel4.s390x",
          "4WS:gzip-0:1.3.3-15.rhel4.src",
          "4WS:gzip-0:1.3.3-15.rhel4.x86_64",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2005-0758"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617573",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617573"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2005-0758",
          "url": "https://www.cve.org/CVERecord?id=CVE-2005-0758"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-0758",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-0758"
        }
      ],
      "release_date": "2005-04-22T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-06-13T12:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:gzip-0:1.3.3-12.rhel3.i386",
            "3AS:gzip-0:1.3.3-12.rhel3.ia64",
            "3AS:gzip-0:1.3.3-12.rhel3.ppc",
            "3AS:gzip-0:1.3.3-12.rhel3.s390",
            "3AS:gzip-0:1.3.3-12.rhel3.s390x",
            "3AS:gzip-0:1.3.3-12.rhel3.src",
            "3AS:gzip-0:1.3.3-12.rhel3.x86_64",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3Desktop:gzip-0:1.3.3-12.rhel3.i386",
            "3Desktop:gzip-0:1.3.3-12.rhel3.ia64",
            "3Desktop:gzip-0:1.3.3-12.rhel3.ppc",
            "3Desktop:gzip-0:1.3.3-12.rhel3.s390",
            "3Desktop:gzip-0:1.3.3-12.rhel3.s390x",
            "3Desktop:gzip-0:1.3.3-12.rhel3.src",
            "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3ES:gzip-0:1.3.3-12.rhel3.i386",
            "3ES:gzip-0:1.3.3-12.rhel3.ia64",
            "3ES:gzip-0:1.3.3-12.rhel3.ppc",
            "3ES:gzip-0:1.3.3-12.rhel3.s390",
            "3ES:gzip-0:1.3.3-12.rhel3.s390x",
            "3ES:gzip-0:1.3.3-12.rhel3.src",
            "3ES:gzip-0:1.3.3-12.rhel3.x86_64",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3WS:gzip-0:1.3.3-12.rhel3.i386",
            "3WS:gzip-0:1.3.3-12.rhel3.ia64",
            "3WS:gzip-0:1.3.3-12.rhel3.ppc",
            "3WS:gzip-0:1.3.3-12.rhel3.s390",
            "3WS:gzip-0:1.3.3-12.rhel3.s390x",
            "3WS:gzip-0:1.3.3-12.rhel3.src",
            "3WS:gzip-0:1.3.3-12.rhel3.x86_64",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "4AS:gzip-0:1.3.3-15.rhel4.i386",
            "4AS:gzip-0:1.3.3-15.rhel4.ia64",
            "4AS:gzip-0:1.3.3-15.rhel4.ppc",
            "4AS:gzip-0:1.3.3-15.rhel4.s390",
            "4AS:gzip-0:1.3.3-15.rhel4.s390x",
            "4AS:gzip-0:1.3.3-15.rhel4.src",
            "4AS:gzip-0:1.3.3-15.rhel4.x86_64",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4Desktop:gzip-0:1.3.3-15.rhel4.i386",
            "4Desktop:gzip-0:1.3.3-15.rhel4.ia64",
            "4Desktop:gzip-0:1.3.3-15.rhel4.ppc",
            "4Desktop:gzip-0:1.3.3-15.rhel4.s390",
            "4Desktop:gzip-0:1.3.3-15.rhel4.s390x",
            "4Desktop:gzip-0:1.3.3-15.rhel4.src",
            "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4ES:gzip-0:1.3.3-15.rhel4.i386",
            "4ES:gzip-0:1.3.3-15.rhel4.ia64",
            "4ES:gzip-0:1.3.3-15.rhel4.ppc",
            "4ES:gzip-0:1.3.3-15.rhel4.s390",
            "4ES:gzip-0:1.3.3-15.rhel4.s390x",
            "4ES:gzip-0:1.3.3-15.rhel4.src",
            "4ES:gzip-0:1.3.3-15.rhel4.x86_64",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4WS:gzip-0:1.3.3-15.rhel4.i386",
            "4WS:gzip-0:1.3.3-15.rhel4.ia64",
            "4WS:gzip-0:1.3.3-15.rhel4.ppc",
            "4WS:gzip-0:1.3.3-15.rhel4.s390",
            "4WS:gzip-0:1.3.3-15.rhel4.s390x",
            "4WS:gzip-0:1.3.3-15.rhel4.src",
            "4WS:gzip-0:1.3.3-15.rhel4.x86_64",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:357"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2005-0988",
      "discovery_date": "2005-04-04T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617595"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a gzipped file, allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by gzip after the decompression is complete.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
          "title": "Statement"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:gzip-0:1.3.3-12.rhel3.i386",
          "3AS:gzip-0:1.3.3-12.rhel3.ia64",
          "3AS:gzip-0:1.3.3-12.rhel3.ppc",
          "3AS:gzip-0:1.3.3-12.rhel3.s390",
          "3AS:gzip-0:1.3.3-12.rhel3.s390x",
          "3AS:gzip-0:1.3.3-12.rhel3.src",
          "3AS:gzip-0:1.3.3-12.rhel3.x86_64",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3Desktop:gzip-0:1.3.3-12.rhel3.i386",
          "3Desktop:gzip-0:1.3.3-12.rhel3.ia64",
          "3Desktop:gzip-0:1.3.3-12.rhel3.ppc",
          "3Desktop:gzip-0:1.3.3-12.rhel3.s390",
          "3Desktop:gzip-0:1.3.3-12.rhel3.s390x",
          "3Desktop:gzip-0:1.3.3-12.rhel3.src",
          "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3ES:gzip-0:1.3.3-12.rhel3.i386",
          "3ES:gzip-0:1.3.3-12.rhel3.ia64",
          "3ES:gzip-0:1.3.3-12.rhel3.ppc",
          "3ES:gzip-0:1.3.3-12.rhel3.s390",
          "3ES:gzip-0:1.3.3-12.rhel3.s390x",
          "3ES:gzip-0:1.3.3-12.rhel3.src",
          "3ES:gzip-0:1.3.3-12.rhel3.x86_64",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3WS:gzip-0:1.3.3-12.rhel3.i386",
          "3WS:gzip-0:1.3.3-12.rhel3.ia64",
          "3WS:gzip-0:1.3.3-12.rhel3.ppc",
          "3WS:gzip-0:1.3.3-12.rhel3.s390",
          "3WS:gzip-0:1.3.3-12.rhel3.s390x",
          "3WS:gzip-0:1.3.3-12.rhel3.src",
          "3WS:gzip-0:1.3.3-12.rhel3.x86_64",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "4AS:gzip-0:1.3.3-15.rhel4.i386",
          "4AS:gzip-0:1.3.3-15.rhel4.ia64",
          "4AS:gzip-0:1.3.3-15.rhel4.ppc",
          "4AS:gzip-0:1.3.3-15.rhel4.s390",
          "4AS:gzip-0:1.3.3-15.rhel4.s390x",
          "4AS:gzip-0:1.3.3-15.rhel4.src",
          "4AS:gzip-0:1.3.3-15.rhel4.x86_64",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4Desktop:gzip-0:1.3.3-15.rhel4.i386",
          "4Desktop:gzip-0:1.3.3-15.rhel4.ia64",
          "4Desktop:gzip-0:1.3.3-15.rhel4.ppc",
          "4Desktop:gzip-0:1.3.3-15.rhel4.s390",
          "4Desktop:gzip-0:1.3.3-15.rhel4.s390x",
          "4Desktop:gzip-0:1.3.3-15.rhel4.src",
          "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4ES:gzip-0:1.3.3-15.rhel4.i386",
          "4ES:gzip-0:1.3.3-15.rhel4.ia64",
          "4ES:gzip-0:1.3.3-15.rhel4.ppc",
          "4ES:gzip-0:1.3.3-15.rhel4.s390",
          "4ES:gzip-0:1.3.3-15.rhel4.s390x",
          "4ES:gzip-0:1.3.3-15.rhel4.src",
          "4ES:gzip-0:1.3.3-15.rhel4.x86_64",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4WS:gzip-0:1.3.3-15.rhel4.i386",
          "4WS:gzip-0:1.3.3-15.rhel4.ia64",
          "4WS:gzip-0:1.3.3-15.rhel4.ppc",
          "4WS:gzip-0:1.3.3-15.rhel4.s390",
          "4WS:gzip-0:1.3.3-15.rhel4.s390x",
          "4WS:gzip-0:1.3.3-15.rhel4.src",
          "4WS:gzip-0:1.3.3-15.rhel4.x86_64",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2005-0988"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617595",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617595"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2005-0988",
          "url": "https://www.cve.org/CVERecord?id=CVE-2005-0988"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-0988",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-0988"
        }
      ],
      "release_date": "2005-04-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-06-13T12:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:gzip-0:1.3.3-12.rhel3.i386",
            "3AS:gzip-0:1.3.3-12.rhel3.ia64",
            "3AS:gzip-0:1.3.3-12.rhel3.ppc",
            "3AS:gzip-0:1.3.3-12.rhel3.s390",
            "3AS:gzip-0:1.3.3-12.rhel3.s390x",
            "3AS:gzip-0:1.3.3-12.rhel3.src",
            "3AS:gzip-0:1.3.3-12.rhel3.x86_64",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3Desktop:gzip-0:1.3.3-12.rhel3.i386",
            "3Desktop:gzip-0:1.3.3-12.rhel3.ia64",
            "3Desktop:gzip-0:1.3.3-12.rhel3.ppc",
            "3Desktop:gzip-0:1.3.3-12.rhel3.s390",
            "3Desktop:gzip-0:1.3.3-12.rhel3.s390x",
            "3Desktop:gzip-0:1.3.3-12.rhel3.src",
            "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3ES:gzip-0:1.3.3-12.rhel3.i386",
            "3ES:gzip-0:1.3.3-12.rhel3.ia64",
            "3ES:gzip-0:1.3.3-12.rhel3.ppc",
            "3ES:gzip-0:1.3.3-12.rhel3.s390",
            "3ES:gzip-0:1.3.3-12.rhel3.s390x",
            "3ES:gzip-0:1.3.3-12.rhel3.src",
            "3ES:gzip-0:1.3.3-12.rhel3.x86_64",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3WS:gzip-0:1.3.3-12.rhel3.i386",
            "3WS:gzip-0:1.3.3-12.rhel3.ia64",
            "3WS:gzip-0:1.3.3-12.rhel3.ppc",
            "3WS:gzip-0:1.3.3-12.rhel3.s390",
            "3WS:gzip-0:1.3.3-12.rhel3.s390x",
            "3WS:gzip-0:1.3.3-12.rhel3.src",
            "3WS:gzip-0:1.3.3-12.rhel3.x86_64",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "4AS:gzip-0:1.3.3-15.rhel4.i386",
            "4AS:gzip-0:1.3.3-15.rhel4.ia64",
            "4AS:gzip-0:1.3.3-15.rhel4.ppc",
            "4AS:gzip-0:1.3.3-15.rhel4.s390",
            "4AS:gzip-0:1.3.3-15.rhel4.s390x",
            "4AS:gzip-0:1.3.3-15.rhel4.src",
            "4AS:gzip-0:1.3.3-15.rhel4.x86_64",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4Desktop:gzip-0:1.3.3-15.rhel4.i386",
            "4Desktop:gzip-0:1.3.3-15.rhel4.ia64",
            "4Desktop:gzip-0:1.3.3-15.rhel4.ppc",
            "4Desktop:gzip-0:1.3.3-15.rhel4.s390",
            "4Desktop:gzip-0:1.3.3-15.rhel4.s390x",
            "4Desktop:gzip-0:1.3.3-15.rhel4.src",
            "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4ES:gzip-0:1.3.3-15.rhel4.i386",
            "4ES:gzip-0:1.3.3-15.rhel4.ia64",
            "4ES:gzip-0:1.3.3-15.rhel4.ppc",
            "4ES:gzip-0:1.3.3-15.rhel4.s390",
            "4ES:gzip-0:1.3.3-15.rhel4.s390x",
            "4ES:gzip-0:1.3.3-15.rhel4.src",
            "4ES:gzip-0:1.3.3-15.rhel4.x86_64",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4WS:gzip-0:1.3.3-15.rhel4.i386",
            "4WS:gzip-0:1.3.3-15.rhel4.ia64",
            "4WS:gzip-0:1.3.3-15.rhel4.ppc",
            "4WS:gzip-0:1.3.3-15.rhel4.s390",
            "4WS:gzip-0:1.3.3-15.rhel4.s390x",
            "4WS:gzip-0:1.3.3-15.rhel4.src",
            "4WS:gzip-0:1.3.3-15.rhel4.x86_64",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:357"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2005-1228",
      "discovery_date": "2005-04-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617616"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
          "title": "Statement"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:gzip-0:1.3.3-12.rhel3.i386",
          "3AS:gzip-0:1.3.3-12.rhel3.ia64",
          "3AS:gzip-0:1.3.3-12.rhel3.ppc",
          "3AS:gzip-0:1.3.3-12.rhel3.s390",
          "3AS:gzip-0:1.3.3-12.rhel3.s390x",
          "3AS:gzip-0:1.3.3-12.rhel3.src",
          "3AS:gzip-0:1.3.3-12.rhel3.x86_64",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3Desktop:gzip-0:1.3.3-12.rhel3.i386",
          "3Desktop:gzip-0:1.3.3-12.rhel3.ia64",
          "3Desktop:gzip-0:1.3.3-12.rhel3.ppc",
          "3Desktop:gzip-0:1.3.3-12.rhel3.s390",
          "3Desktop:gzip-0:1.3.3-12.rhel3.s390x",
          "3Desktop:gzip-0:1.3.3-12.rhel3.src",
          "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3ES:gzip-0:1.3.3-12.rhel3.i386",
          "3ES:gzip-0:1.3.3-12.rhel3.ia64",
          "3ES:gzip-0:1.3.3-12.rhel3.ppc",
          "3ES:gzip-0:1.3.3-12.rhel3.s390",
          "3ES:gzip-0:1.3.3-12.rhel3.s390x",
          "3ES:gzip-0:1.3.3-12.rhel3.src",
          "3ES:gzip-0:1.3.3-12.rhel3.x86_64",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "3WS:gzip-0:1.3.3-12.rhel3.i386",
          "3WS:gzip-0:1.3.3-12.rhel3.ia64",
          "3WS:gzip-0:1.3.3-12.rhel3.ppc",
          "3WS:gzip-0:1.3.3-12.rhel3.s390",
          "3WS:gzip-0:1.3.3-12.rhel3.s390x",
          "3WS:gzip-0:1.3.3-12.rhel3.src",
          "3WS:gzip-0:1.3.3-12.rhel3.x86_64",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
          "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
          "4AS:gzip-0:1.3.3-15.rhel4.i386",
          "4AS:gzip-0:1.3.3-15.rhel4.ia64",
          "4AS:gzip-0:1.3.3-15.rhel4.ppc",
          "4AS:gzip-0:1.3.3-15.rhel4.s390",
          "4AS:gzip-0:1.3.3-15.rhel4.s390x",
          "4AS:gzip-0:1.3.3-15.rhel4.src",
          "4AS:gzip-0:1.3.3-15.rhel4.x86_64",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4Desktop:gzip-0:1.3.3-15.rhel4.i386",
          "4Desktop:gzip-0:1.3.3-15.rhel4.ia64",
          "4Desktop:gzip-0:1.3.3-15.rhel4.ppc",
          "4Desktop:gzip-0:1.3.3-15.rhel4.s390",
          "4Desktop:gzip-0:1.3.3-15.rhel4.s390x",
          "4Desktop:gzip-0:1.3.3-15.rhel4.src",
          "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4ES:gzip-0:1.3.3-15.rhel4.i386",
          "4ES:gzip-0:1.3.3-15.rhel4.ia64",
          "4ES:gzip-0:1.3.3-15.rhel4.ppc",
          "4ES:gzip-0:1.3.3-15.rhel4.s390",
          "4ES:gzip-0:1.3.3-15.rhel4.s390x",
          "4ES:gzip-0:1.3.3-15.rhel4.src",
          "4ES:gzip-0:1.3.3-15.rhel4.x86_64",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
          "4WS:gzip-0:1.3.3-15.rhel4.i386",
          "4WS:gzip-0:1.3.3-15.rhel4.ia64",
          "4WS:gzip-0:1.3.3-15.rhel4.ppc",
          "4WS:gzip-0:1.3.3-15.rhel4.s390",
          "4WS:gzip-0:1.3.3-15.rhel4.s390x",
          "4WS:gzip-0:1.3.3-15.rhel4.src",
          "4WS:gzip-0:1.3.3-15.rhel4.x86_64",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
          "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2005-1228"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617616",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617616"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1228",
          "url": "https://www.cve.org/CVERecord?id=CVE-2005-1228"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1228",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1228"
        }
      ],
      "release_date": "2005-04-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2005-06-13T12:12:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "3AS:gzip-0:1.3.3-12.rhel3.i386",
            "3AS:gzip-0:1.3.3-12.rhel3.ia64",
            "3AS:gzip-0:1.3.3-12.rhel3.ppc",
            "3AS:gzip-0:1.3.3-12.rhel3.s390",
            "3AS:gzip-0:1.3.3-12.rhel3.s390x",
            "3AS:gzip-0:1.3.3-12.rhel3.src",
            "3AS:gzip-0:1.3.3-12.rhel3.x86_64",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3AS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3Desktop:gzip-0:1.3.3-12.rhel3.i386",
            "3Desktop:gzip-0:1.3.3-12.rhel3.ia64",
            "3Desktop:gzip-0:1.3.3-12.rhel3.ppc",
            "3Desktop:gzip-0:1.3.3-12.rhel3.s390",
            "3Desktop:gzip-0:1.3.3-12.rhel3.s390x",
            "3Desktop:gzip-0:1.3.3-12.rhel3.src",
            "3Desktop:gzip-0:1.3.3-12.rhel3.x86_64",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3Desktop:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3ES:gzip-0:1.3.3-12.rhel3.i386",
            "3ES:gzip-0:1.3.3-12.rhel3.ia64",
            "3ES:gzip-0:1.3.3-12.rhel3.ppc",
            "3ES:gzip-0:1.3.3-12.rhel3.s390",
            "3ES:gzip-0:1.3.3-12.rhel3.s390x",
            "3ES:gzip-0:1.3.3-12.rhel3.src",
            "3ES:gzip-0:1.3.3-12.rhel3.x86_64",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3ES:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "3WS:gzip-0:1.3.3-12.rhel3.i386",
            "3WS:gzip-0:1.3.3-12.rhel3.ia64",
            "3WS:gzip-0:1.3.3-12.rhel3.ppc",
            "3WS:gzip-0:1.3.3-12.rhel3.s390",
            "3WS:gzip-0:1.3.3-12.rhel3.s390x",
            "3WS:gzip-0:1.3.3-12.rhel3.src",
            "3WS:gzip-0:1.3.3-12.rhel3.x86_64",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.i386",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ia64",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.ppc",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.s390x",
            "3WS:gzip-debuginfo-0:1.3.3-12.rhel3.x86_64",
            "4AS:gzip-0:1.3.3-15.rhel4.i386",
            "4AS:gzip-0:1.3.3-15.rhel4.ia64",
            "4AS:gzip-0:1.3.3-15.rhel4.ppc",
            "4AS:gzip-0:1.3.3-15.rhel4.s390",
            "4AS:gzip-0:1.3.3-15.rhel4.s390x",
            "4AS:gzip-0:1.3.3-15.rhel4.src",
            "4AS:gzip-0:1.3.3-15.rhel4.x86_64",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4AS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4Desktop:gzip-0:1.3.3-15.rhel4.i386",
            "4Desktop:gzip-0:1.3.3-15.rhel4.ia64",
            "4Desktop:gzip-0:1.3.3-15.rhel4.ppc",
            "4Desktop:gzip-0:1.3.3-15.rhel4.s390",
            "4Desktop:gzip-0:1.3.3-15.rhel4.s390x",
            "4Desktop:gzip-0:1.3.3-15.rhel4.src",
            "4Desktop:gzip-0:1.3.3-15.rhel4.x86_64",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4Desktop:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4ES:gzip-0:1.3.3-15.rhel4.i386",
            "4ES:gzip-0:1.3.3-15.rhel4.ia64",
            "4ES:gzip-0:1.3.3-15.rhel4.ppc",
            "4ES:gzip-0:1.3.3-15.rhel4.s390",
            "4ES:gzip-0:1.3.3-15.rhel4.s390x",
            "4ES:gzip-0:1.3.3-15.rhel4.src",
            "4ES:gzip-0:1.3.3-15.rhel4.x86_64",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4ES:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64",
            "4WS:gzip-0:1.3.3-15.rhel4.i386",
            "4WS:gzip-0:1.3.3-15.rhel4.ia64",
            "4WS:gzip-0:1.3.3-15.rhel4.ppc",
            "4WS:gzip-0:1.3.3-15.rhel4.s390",
            "4WS:gzip-0:1.3.3-15.rhel4.s390x",
            "4WS:gzip-0:1.3.3-15.rhel4.src",
            "4WS:gzip-0:1.3.3-15.rhel4.x86_64",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.i386",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ia64",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.ppc",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.s390x",
            "4WS:gzip-debuginfo-0:1.3.3-15.rhel4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2005:357"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

ghsa-9855-w374-4v24

Vulnerability from github

Published

2022-05-03 03:14

Modified

2022-05-03 03:14

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2005-1228"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-05-02T04:00:00Z",
    "severity": "MODERATE"
  },
  "details": "Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote attackers to write to arbitrary directories via a .. (dot dot) in the original filename within a compressed file.",
  "id": "GHSA-9855-w374-4v24",
  "modified": "2022-05-03T03:14:08Z",
  "published": "2022-05-03T03:14:08Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1228"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/20199"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11057"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A170"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A382"
    },
    {
      "type": "WEB",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=305255"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=111402732406477\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2005-357.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/15047"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18100"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/21253"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22033"
    },
    {
      "type": "WEB",
      "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.555852"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101816-1"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2005/dsa-752"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/15721"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/19289"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-214A.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/3101"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2005-1228 (GCVE-0-2005-1228)

Vulnerability from cvelistv5

gsd-2005-1228

Vulnerability from gsd

fkie_cve-2005-1228

Vulnerability from fkie_nvd

rhsa-2005:357

Vulnerability from csaf_redhat

ghsa-9855-w374-4v24

Vulnerability from github

Tags

Sightings

Nomenclature