CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two or more newlines where selected content and the target file names are embedded in crafted multi-line file names. This flaw allows a remote, low privileged attacker to force zgrep to write arbitrary files on the system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
Affected Products (NVD)
VendorProductVersion
gnugzip
𝑥
< 1.12
redhatjboss_data_grid
7.0.0
debiandebian_linux
10.0
tukaanixz
𝑥
< 5.2.5
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
gzip
bookworm
1.12-1
fixed
bullseye
1.10-4+deb11u1
fixed
bullseye (security)
1.10-4+deb11u1
fixed
sid
1.12-1.1
fixed
trixie
1.12-1.1
fixed
xz-utils
bookworm
5.4.1-0.2
fixed
bullseye
5.2.5-2.1~deb11u1
fixed
bullseye (security)
5.2.5-2.1~deb11u1
fixed
sid
5.6.3-1
fixed
trixie
5.6.3-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
gzip
bionic
Fixed 1.6-5ubuntu1.2
released
focal
Fixed 1.10-0ubuntu4.1
released
impish
Fixed 1.10-4ubuntu1.1
released
jammy
Fixed 1.10-4ubuntu4
released
trusty
Fixed 1.6-3ubuntu1+esm1
released
xenial
Fixed 1.6-4ubuntu1+esm1
released
xz-utils
bionic
Fixed 5.2.2-1.3ubuntu0.1
released
focal
Fixed 5.2.4-1ubuntu1.1
released
impish
Fixed 5.2.5-2ubuntu0.1
released
jammy
Fixed 5.2.5-2ubuntu1
released
trusty
Fixed 5.1.1alpha+20120614-2ubuntu2.14.04.1+esm1
released
xenial
Fixed 5.1.1alpha+20120614-2ubuntu2.16.04.1+esm1
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
apparmor-abstractions
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
apparmor-docs
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
apparmor-parser
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
apparmor-parser-lang
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
apparmor-profiles
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
apparmor-utils
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
apparmor-utils-lang
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
gzip
suse enterprise desktop 15 SP3
1.10-150200.10.1
fixed
suse enterprise desktop 15 SP4
1.10-150200.10.1
fixed
suse enterprise desktop 15 SP5
1.10-150200.10.1
fixed
suse enterprise desktop 15 SP6
1.10-150200.10.1
fixed
suse enterprise desktop 15 SP7
1.10-150200.10.1
fixed
suse enterprise sap 12 SP3
1.6-9.9.1
fixed
suse enterprise sap 12 SP4
1.6-9.9.1
fixed
suse enterprise sap 12 SP5
1.10-4.14.1
fixed
suse enterprise sap 15
1.10-150000.4.15.1
fixed
suse enterprise sap 15 SP1
1.10-150000.4.15.1
fixed
suse enterprise sap 15 SP3
1.10-150200.10.1
fixed
suse enterprise sap 15 SP4
1.10-150200.10.1
fixed
suse enterprise sap 15 SP5
1.10-150200.10.1
fixed
suse enterprise sap 15 SP6
1.10-150200.10.1
fixed
suse enterprise sap 15 SP7
1.10-150200.10.1
fixed
suse enterprise server 12 SP2
1.6-9.9.1
fixed
suse enterprise server 12 SP3
1.6-9.9.1
fixed
suse enterprise server 12 SP4
1.6-9.9.1
fixed
suse enterprise server 12 SP5
1.10-4.14.1
fixed
suse enterprise server 15
1.10-150000.4.15.1
fixed
suse enterprise server 15 SP1
1.10-150000.4.15.1
fixed
suse enterprise server 15 SP2
1.10-150200.10.1
fixed
suse enterprise server 15 SP3
1.10-150200.10.1
fixed
suse enterprise server 15 SP4
1.10-150200.10.1
fixed
suse enterprise server 15 SP5
1.10-150200.10.1
fixed
suse enterprise server 15 SP6
1.10-150200.10.1
fixed
suse enterprise server 15 SP7
1.10-150200.10.1
fixed
libapparmor-devel
suse enterprise desktop 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
libapparmor1
suse enterprise desktop 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
libapparmor1-32bit
suse enterprise desktop 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.3
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.1
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.1
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
liblzma5
suse enterprise desktop 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise desktop 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise sap 12 SP3
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP4
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP5
5.0.5-6.7.1
fixed
suse enterprise sap 15
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise sap 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise server 12 SP2
5.0.5-6.7.1
fixed
suse enterprise server 12 SP3
5.0.5-6.7.1
fixed
suse enterprise server 12 SP4
5.0.5-6.7.1
fixed
suse enterprise server 12 SP5
5.0.5-6.7.1
fixed
suse enterprise server 15
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP2
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise server 15 SP7
5.4.1-150600.3.3.1
fixed
liblzma5-32bit
suse enterprise desktop 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise desktop 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise sap 12 SP3
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP4
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP5
5.0.5-6.7.1
fixed
suse enterprise sap 15
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise sap 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise server 12 SP2
5.0.5-6.7.1
fixed
suse enterprise server 12 SP3
5.0.5-6.7.1
fixed
suse enterprise server 12 SP4
5.0.5-6.7.1
fixed
suse enterprise server 12 SP5
5.0.5-6.7.1
fixed
suse enterprise server 15
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP2
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise server 15 SP7
5.4.1-150600.3.3.1
fixed
pam_apparmor
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
pam_apparmor-32bit
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
python3-apparmor
suse enterprise desktop 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise desktop 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise desktop 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise desktop 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise sap 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise sap 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise sap 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise sap 15 SP7
3.1.7-150600.5.6.1
fixed
suse enterprise server 15 SP4
3.0.4-150400.3.4
fixed
suse enterprise server 15 SP5
3.0.4-150500.9.3
fixed
suse enterprise server 15 SP6
3.1.7-150600.3.4
fixed
suse enterprise server 15 SP7
3.1.7-150600.5.6.1
fixed
xz
suse enterprise desktop 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise desktop 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise sap 12 SP3
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP4
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP5
5.0.5-6.7.1
fixed
suse enterprise sap 15
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise sap 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise server 12 SP2
5.0.5-6.7.1
fixed
suse enterprise server 12 SP3
5.0.5-6.7.1
fixed
suse enterprise server 12 SP4
5.0.5-6.7.1
fixed
suse enterprise server 12 SP5
5.0.5-6.7.1
fixed
suse enterprise server 15
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP2
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise server 15 SP7
5.4.1-150600.3.3.1
fixed
xz-devel
suse enterprise desktop 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise desktop 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise sap 15
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise sap 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise server 15
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP2
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise server 15 SP7
5.4.1-150600.3.3.1
fixed
xz-lang
suse enterprise desktop 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise desktop 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise sap 12 SP3
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP4
5.0.5-6.7.1
fixed
suse enterprise sap 12 SP5
5.0.5-6.7.1
fixed
suse enterprise sap 15
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise sap 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise server 12 SP2
5.0.5-6.7.1
fixed
suse enterprise server 12 SP3
5.0.5-6.7.1
fixed
suse enterprise server 12 SP4
5.0.5-6.7.1
fixed
suse enterprise server 12 SP5
5.0.5-6.7.1
fixed
suse enterprise server 15
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP2
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise server 15 SP7
5.4.1-150600.3.3.1
fixed
xz-static-devel
suse enterprise desktop 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise desktop 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise desktop 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise sap 15
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise sap 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise sap 15 SP7
5.4.1-150600.3.3.1
fixed
suse enterprise server 15
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP1
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP2
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP3
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP4
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP5
5.2.3-150000.4.7.1
fixed
suse enterprise server 15 SP6
5.4.1-150600.1.2
fixed
suse enterprise server 15 SP7
5.4.1-150600.3.3.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
gzip
RHEL 7
0:1.5-11.el7_9
fixed
RHEL 9
0:1.10-9.el9_0
fixed
xz
RHEL 7
0:5.2.2-2.el7_9
fixed
RHEL 8
0:5.2.4-4.el8_6
fixed
RHEL 8.1 E4S
0:5.2.4-4.el8_1
fixed
RHEL 8.2 AUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 E4S
0:5.2.4-4.el8_2
fixed
RHEL 8.2 EUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 TUS
0:5.2.4-4.el8_2
fixed
RHEL 8.4 AUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 E4S
0:5.2.4-4.el8_4
fixed
RHEL 8.4 EUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 TUS
0:5.2.4-4.el8_4
fixed
RHEL 8.6 AUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 E4S
0:5.2.4-4.el8_6
fixed
RHEL 8.6 EUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 TUS
0:5.2.4-4.el8_6
fixed
RHEL 9
0:5.2.5-8.el9_0
fixed
xz-compat-libs
RHEL 7
0:5.2.2-2.el7_9
fixed
xz-devel
RHEL 7
0:5.2.2-2.el7_9
fixed
RHEL 8
0:5.2.4-4.el8_6
fixed
RHEL 8.1 E4S
0:5.2.4-4.el8_1
fixed
RHEL 8.2 AUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 E4S
0:5.2.4-4.el8_2
fixed
RHEL 8.2 EUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 TUS
0:5.2.4-4.el8_2
fixed
RHEL 8.4 AUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 E4S
0:5.2.4-4.el8_4
fixed
RHEL 8.4 EUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 TUS
0:5.2.4-4.el8_4
fixed
RHEL 8.6 AUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 E4S
0:5.2.4-4.el8_6
fixed
RHEL 8.6 EUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 TUS
0:5.2.4-4.el8_6
fixed
RHEL 9
0:5.2.5-8.el9_0
fixed
xz-libs
RHEL 7
0:5.2.2-2.el7_9
fixed
RHEL 8
0:5.2.4-4.el8_6
fixed
RHEL 8.1 E4S
0:5.2.4-4.el8_1
fixed
RHEL 8.2 AUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 E4S
0:5.2.4-4.el8_2
fixed
RHEL 8.2 EUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 TUS
0:5.2.4-4.el8_2
fixed
RHEL 8.4 AUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 E4S
0:5.2.4-4.el8_4
fixed
RHEL 8.4 EUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 TUS
0:5.2.4-4.el8_4
fixed
RHEL 8.6 AUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 E4S
0:5.2.4-4.el8_6
fixed
RHEL 8.6 EUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 TUS
0:5.2.4-4.el8_6
fixed
RHEL 9
0:5.2.5-8.el9_0
fixed
xz-lzma-compat
RHEL 7
0:5.2.2-2.el7_9
fixed
RHEL 8
0:5.2.4-4.el8_6
fixed
RHEL 8.2 AUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 E4S
0:5.2.4-4.el8_2
fixed
RHEL 8.2 EUS
0:5.2.4-4.el8_2
fixed
RHEL 8.2 TUS
0:5.2.4-4.el8_2
fixed
RHEL 8.4 AUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 E4S
0:5.2.4-4.el8_4
fixed
RHEL 8.4 EUS
0:5.2.4-4.el8_4
fixed
RHEL 8.4 TUS
0:5.2.4-4.el8_4
fixed
RHEL 8.6 AUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 E4S
0:5.2.4-4.el8_6
fixed
RHEL 8.6 EUS
0:5.2.4-4.el8_6
fixed
RHEL 8.6 TUS
0:5.2.4-4.el8_6
fixed
RHEL 9
0:5.2.5-8.el9_0
fixed
Common Weakness Enumeration
References
https://access.redhat.com/security/cve/CVE-2022-1271
https://bugzilla.redhat.com/show_bug.cgi?id=2073310
https://git.tukaani.org/?p=xz.git%3Ba=commit%3Bh=69d1b3fc29677af8ade8dc15dba83f0589cb63d6
https://lists.gnu.org/r/bug-gzip/2022-04/msg00011.html
https://security-tracker.debian.org/tracker/CVE-2022-1271
https://security.gentoo.org/glsa/202209-01
https://security.netapp.com/advisory/ntap-20220930-0006/
https://tukaani.org/xz/xzgrep-ZDI-CAN-16587.patch
https://www.openwall.com/lists/oss-security/2022/04/07/8
https://access.redhat.com/security/cve/CVE-2022-1271
https://bugzilla.redhat.com/show_bug.cgi?id=2073310
https://git.tukaani.org/?p=xz.git%3Ba=commit%3Bh=69d1b3fc29677af8ade8dc15dba83f0589cb63d6
https://lists.gnu.org/r/bug-gzip/2022-04/msg00011.html
https://security-tracker.debian.org/tracker/CVE-2022-1271
https://security.gentoo.org/glsa/202209-01
https://security.netapp.com/advisory/ntap-20220930-0006/
https://tukaani.org/xz/xzgrep-ZDI-CAN-16587.patch
https://www.openwall.com/lists/oss-security/2022/04/07/8