Release date:
2026-07-11 17:49:30 UTC
Description:
- CVE-2026-41992: out-of-bounds read in the LZH decoder from stale shared
decompression state (left/right) reused across a .Z then .lzh file in a
single gzip -d invocation
Updated packages:
-
gzip-1.5-11.el7_9.tuxcare.els1.x86_64.rpm
sha:6d94606717d3d082c0f48dd2f1a853b57a1fd8304ef4784041db7a0cf93dc417
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.