CVE-2005-0988

Name of the Vulnerable Software and Affected Versions gzip versions 1.2.4 and earlier, 1.3.3 and earlier

Description A race condition exists when decompressing a gzipped file, allowing local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed. This occurs because gzip changes the permissions of the file after decompression is complete.

Recommendations For gzip versions 1.2.4 and earlier, and 1.3.3 and earlier, consider updating to a newer version that addresses this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.