Mandrake Linux Security Advisory : gzip (MDKSA-2002:011)
High Nessus Plugin ID 13919
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionThere are two problems with the gzip archiving program; the first is a crash when an input file name is over 1020 characters, and the second is a buffer overflow that could be exploited if gzip is run on a server such as an FTP server. The patch applied is from the gzip developers and the problems have been fixed in the latest beta.
SolutionUpdate the affected gzip package.