Mandriva Linux Security Advisory 2009-207 - Off-by-one error in the bzinflate function in Bzip2.xs in the Compress-Raw-Bzip2 module before 2.018 for Perl allows context-dependent attackers to cause a denial of service (application hang or crash) via a crafted bzip2 compressed stream that triggers a buffer overflow, a related issue to CVE-2009-1391. This update provides a solution to this vulnerability.
4b957f4ba0927edc62148dab61c0db5ec568e0f71f52e958ee814a008f626a89
Gentoo Linux Security Advisory GLSA 200908-07 - An off-by-one error in Compress::Raw::Zlib and Compress::Raw::Bzip2 might lead to a Denial of Service. Leo Bergolth reported an off-by-one error in the inflate() function in Zlib.xs of Compress::Raw::Zlib, possibly leading to a heap-based buffer overflow (CVE-2009-1391). Versions less than 2.020 are affected.
4a49f705f825d516631a540be3743e3d68ae6a34883fbf64195eb093757ccf16