GNU bug report logs - #60924
gunzip susceptible to PATH highjacking

Previous Next

Package: gzip;

Reported by: Peter Hutterer <peter.hutterer <at> who-t.net>

Date: Wed, 18 Jan 2023 04:40:02 UTC

Severity: normal

Done: Paul Eggert <eggert <at> cs.ucla.edu>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Paul Eggert <eggert <at> cs.ucla.edu>
To: Peter Hutterer <peter.hutterer <at> who-t.net>, 60924 <at> debbugs.gnu.org
Subject: bug#60924: gunzip susceptible to PATH highjacking
Date: Tue, 17 Jan 2023 23:50:33 -0800

On 2023-01-17 20:39, Peter Hutterer wrote:
> Not sure if this is a bug, intentional, or just a "meh, too niche to
> worry about".

I'd say it's intentional.

These days you're probably better off linking to zlib instead.

This bug report was last modified 2 years and 176 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #60924 gunzip susceptible to PATH highjacking

GNU bug report logs - #60924
gunzip susceptible to PATH highjacking