SUSE-SU-2022:1617-1

Details

This update for gzip fixes the following issues:

CVE-2022-1271: Fix escaping of malicious filenames. (bsc#1198062)

Affected Packages

gzip

SUSE Enterprise Storage 7SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP2-LTSSSUSE Linux Enterprise Micro 5.0SUSE Linux Enterprise Micro 5.1

Fixed in:

1.10-150200.10.1

References

REPORT

https://bugzilla.suse.com/1198062

REPORT

https://bugzilla.suse.com/1198922

WEB

https://www.suse.com/security/cve/CVE-2022-1271

ADVISORY

https://www.suse.com/support/update/announcement/2022/suse-su-20221617-1/