CVE-2026-41991

CERT.pl

⚪ Do wiadomości

Niebezpieczne zarządzanie plikami tymczasowymi w gzexe pozwala na nadpisanie dowolnego pliku.

CVSS

0.0

EPSS

0.0%

Exploit

none

Vendor

Opis źródłowy (NVD)

GNU gzip contains a vulnerability in the gzexe utility related to insecure temporary file handling. When the mktemp utility is not available in the user’s PATH, gzexe falls back to constructing a temporary file path based solely on the process ID (PID). This predictable filename is created without exclusive access or existence checks. A local attacker can pre‑create the predicted temporary file path as a symbolic link pointing to an arbitrary file writable by the victim. When gzexe runs, it follows the symlink and overwrites the target file, resulting in a time‑of‑check to time‑of‑use (TOCTOU) condition that allows arbitrary file overwrite. This issue has been fixed in the commit 4e6f8b24ab823146ab8776f0b7fe486ab34d4269

Alert CERT.pl

Podatności w oprogramowaniu gzip

https://cert.pl/posts/2026/06/CVE-2026-41991/

brak Brak patcha

Źródła i daty

Źródło	Wartość
NVD – CVSS	0.0
CISA KEV (aktywnie wykorzystywane)	Nie
FIRST EPSS (prawdopodobieństwo exploita)	0.0%
Opublikowano (NVD)	2026-06-29 12:16:29 UTC
Ostatnia modyfikacja (NVD)	2026-06-29 19:12:56 UTC

Referencje

https://cert.pl/en/posts/2026/04/CVE-2026-41991/ (cvd@cert.pl)
https://cgit.git.savannah.gnu.org/cgit/gzip.git/commit/?id=4e6f8b24ab823146ab8776f0b7fe486ab34d4269 (cvd@cert.pl)
https://www.gnu.org/software/gzip/ (cvd@cert.pl)