Release a set of utilities for compressing data Gzip 1.12 . The new version has a vulnerability in the zgrep utility, which allows you to process a specially decorated file name, including two or more symbols of a new line, overwrite arbitrary files in the system, as far as the current permissions allow. The problem is manifested from version 1.3.10 released in 2007.
From other changes, it is noted to stop installing the ZLESS utility to the system without the LESS utility, as well as providing output when executing the ‘GZIP -L’ command correct file information, size more 4 GB (information about the size of unpacked data is now determined not based on a fixed 32-bit field from the header, but through unpacking with the actual data size calculation).