Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties.
{ "binaries": [ { "binary_name": "libzstd1", "binary_version": "1.3.1+dfsg-1~ubuntu0.16.04.1+esm3" }, { "binary_name": "libzstd1-dbgsym", "binary_version": "1.3.1+dfsg-1~ubuntu0.16.04.1+esm3" }, { "binary_name": "libzstd1-dev", "binary_version": "1.3.1+dfsg-1~ubuntu0.16.04.1+esm3" }, { "binary_name": "zstd", "binary_version": "1.3.1+dfsg-1~ubuntu0.16.04.1+esm3" }, { "binary_name": "zstd-dbgsym", "binary_version": "1.3.1+dfsg-1~ubuntu0.16.04.1+esm3" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium" }
{ "binaries": [ { "binary_name": "libzstd-dev", "binary_version": "1.3.3+dfsg-2ubuntu1.2" }, { "binary_name": "libzstd1", "binary_version": "1.3.3+dfsg-2ubuntu1.2" }, { "binary_name": "libzstd1-dbgsym", "binary_version": "1.3.3+dfsg-2ubuntu1.2" }, { "binary_name": "libzstd1-dev", "binary_version": "1.3.3+dfsg-2ubuntu1.2" }, { "binary_name": "libzstd1-udeb", "binary_version": "1.3.3+dfsg-2ubuntu1.2" }, { "binary_name": "zstd", "binary_version": "1.3.3+dfsg-2ubuntu1.2" }, { "binary_name": "zstd-dbgsym", "binary_version": "1.3.3+dfsg-2ubuntu1.2" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }
{ "binaries": [ { "binary_name": "libzstd-dev", "binary_version": "1.4.4+dfsg-3ubuntu0.1" }, { "binary_name": "libzstd1", "binary_version": "1.4.4+dfsg-3ubuntu0.1" }, { "binary_name": "libzstd1-dbgsym", "binary_version": "1.4.4+dfsg-3ubuntu0.1" }, { "binary_name": "libzstd1-udeb", "binary_version": "1.4.4+dfsg-3ubuntu0.1" }, { "binary_name": "zstd", "binary_version": "1.4.4+dfsg-3ubuntu0.1" }, { "binary_name": "zstd-dbgsym", "binary_version": "1.4.4+dfsg-3ubuntu0.1" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }