Unrated severityNVD Advisory· Published Aug 31, 2022· Updated Jun 9, 2025
CVE-2022-1271
CVE-2022-1271
Description
An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name (for example, a crafted file name), this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation when processing filenames with two or more newlines where selected content and the target file names are embedded in crafted multi-line file names. This flaw allows a remote, low privileged attacker to force zgrep to write arbitrary files on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
90- osv-coords89 versionspkg:rpm/almalinux/gzippkg:rpm/almalinux/xzpkg:rpm/almalinux/xz-develpkg:rpm/almalinux/xz-libspkg:rpm/almalinux/xz-lzma-compatpkg:rpm/opensuse/apparmor&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/gzip&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/gzip&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/gzip&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/xz&distro=openSUSE%20Leap%2015.3pkg:rpm/opensuse/xz&distro=openSUSE%20Tumbleweedpkg:rpm/suse/gzip&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/gzip&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/gzip&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/gzip&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/gzip&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/gzip&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/gzip&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/gzip&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/gzip&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/gzip&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/gzip&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209pkg:rpm/suse/xz&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/xz&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/xz&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Micro%205.0pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCLpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCLpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/xz&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/xz&distro=SUSE%20Manager%20Proxy%204.1pkg:rpm/suse/xz&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1pkg:rpm/suse/xz&distro=SUSE%20Manager%20Server%204.1pkg:rpm/suse/xz&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/xz&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/xz&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208pkg:rpm/suse/xz&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 1.9-13.el8_5+ 88 more
- (no CPE)range: < 1.9-13.el8_5
- (no CPE)range: < 5.2.5-8.el9_0
- (no CPE)range: < 5.2.5-8.el9_0
- (no CPE)range: < 5.2.5-8.el9_0
- (no CPE)range: < 5.2.5-8.el9_0
- (no CPE)range: < 3.0.4-4.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.12-1.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.6-1.1
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.10-4.11.3
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.10-4.11.3
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150000.4.12.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.10-150200.10.1
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 1.6-9.6.2
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.0.3-0.12.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.0.3-0.12.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.2.3-150000.4.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
- (no CPE)range: < 5.0.5-6.7.1
Patches
Vulnerability mechanics
References
9- security.gentoo.org/glsa/202209-01mitrevendor-advisoryx_refsource_GENTOO
- access.redhat.com/security/cve/CVE-2022-1271mitrex_refsource_MISC
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
- git.tukaani.orgmitrex_refsource_MISC
- lists.gnu.org/r/bug-gzip/2022-04/msg00011.htmlmitrex_refsource_MISC
- security-tracker.debian.org/tracker/CVE-2022-1271mitrex_refsource_MISC
- security.netapp.com/advisory/ntap-20220930-0006/mitrex_refsource_CONFIRM
- tukaani.org/xz/xzgrep-ZDI-CAN-16587.patchmitrex_refsource_MISC
- www.openwall.com/lists/oss-security/2022/04/07/8mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.