CVE-2010-0001 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-0001 Interim 1 30 2025-11-05T06:02:42Z current 2021-05-30T12:49:49Z 2025-11-05T06:02:42Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-0001 Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/AAYU3JB3JULU2SUXUENBJSQTIMARSUKY/#AAYU3JB3JULU2SUXUENBJSQTIMARSUKY E-Mail link for SUSE-SA:2010:008 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Micro 6.0 SUSE Linux Micro 6.1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 openSUSE Leap 15.0 openSUSE Tumbleweed gzip-1.10-2.12 gzip-1.13-1.50 gzip-1.13-160000.2.2 gzip-1.13-slfo.1.1_2.4 gzip-1.3.12-69.19.1 gzip-1.3.12-69.23.1 gzip-1.6-7.209 gzip-1.6-7.392 gzip-1.6-9.3.1 gzip-1.8-1.29 gzip-1.9-2.21 gzip-1.9-lp150.2.16 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Desktop 12 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Desktop 12 SP1 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Desktop 12 SP2 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Desktop 12 SP3 gzip-1.6-9.3.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 gzip-1.10-2.12 as a component of SUSE Linux Enterprise High Performance Computing 12 SP5 gzip-1.9-2.21 as a component of SUSE Linux Enterprise Module for Basesystem 15 gzip-1.9-2.21 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP1 gzip-1.3.12-69.19.1 as a component of SUSE Linux Enterprise Server 11 gzip-1.3.12-69.19.1 as a component of SUSE Linux Enterprise Server 11 SP1 gzip-1.3.12-69.19.1 as a component of SUSE Linux Enterprise Server 11 SP2 gzip-1.3.12-69.23.1 as a component of SUSE Linux Enterprise Server 11 SP3 gzip-1.3.12-69.23.1 as a component of SUSE Linux Enterprise Server 11 SP4 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Server 12 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Server 12 SP1 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Server 12 SP2 gzip-1.6-7.392 as a component of SUSE Linux Enterprise Server 12 SP3 gzip-1.6-9.3.1 as a component of SUSE Linux Enterprise Server 12 SP4 gzip-1.10-2.12 as a component of SUSE Linux Enterprise Server 12 SP5 gzip-1.13-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 gzip-1.6-7.209 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 gzip-1.3.12-69.19.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 gzip-1.10-2.12 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 gzip-1.13-1.50 as a component of SUSE Linux Micro 6.0 gzip-1.13-slfo.1.1_2.4 as a component of SUSE Linux Micro 6.1 gzip-1.9-lp150.2.16 as a component of openSUSE Leap 15.0 gzip-1.8-1.29 as a component of openSUSE Tumbleweed Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error. CVE-2010-0001 SUSE Linux Enterprise Desktop 12:gzip-1.6-7.392 SUSE Linux Enterprise Desktop 12 SP1:gzip-1.6-7.392 SUSE Linux Enterprise Desktop 12 SP2:gzip-1.6-7.392 SUSE Linux Enterprise Desktop 12 SP3:gzip-1.6-7.392 SUSE Linux Enterprise Desktop 12 SP4:gzip-1.6-9.3.1 SUSE Linux Enterprise High Performance Computing 12 SP5:gzip-1.10-2.12 SUSE Linux Enterprise Module for Basesystem 15:gzip-1.9-2.21 SUSE Linux Enterprise Module for Basesystem 15 SP1:gzip-1.9-2.21 SUSE Linux Enterprise Server 11:gzip-1.3.12-69.19.1 SUSE Linux Enterprise Server 11 SP1:gzip-1.3.12-69.19.1 SUSE Linux Enterprise Server 11 SP2:gzip-1.3.12-69.19.1 SUSE Linux Enterprise Server 11 SP3:gzip-1.3.12-69.23.1 SUSE Linux Enterprise Server 11 SP4:gzip-1.3.12-69.23.1 SUSE Linux Enterprise Server 12:gzip-1.6-7.392 SUSE Linux Enterprise Server 12 SP1:gzip-1.6-7.392 SUSE Linux Enterprise Server 12 SP2:gzip-1.6-7.392 SUSE Linux Enterprise Server 12 SP3:gzip-1.6-7.392 SUSE Linux Enterprise Server 12 SP4:gzip-1.6-9.3.1 SUSE Linux Enterprise Server 12 SP5:gzip-1.10-2.12 SUSE Linux Enterprise Server 16.0:gzip-1.13-160000.2.2 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gzip-1.6-7.209 SUSE Linux Enterprise Server for SAP Applications 11:gzip-1.3.12-69.19.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:gzip-1.10-2.12 SUSE Linux Micro 6.0:gzip-1.13-1.50 SUSE Linux Micro 6.1:gzip-1.13-slfo.1.1_2.4 openSUSE Leap 15.0:gzip-1.9-lp150.2.16 openSUSE Tumbleweed:gzip-1.8-1.29 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P