View at Official debian advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2004-1349 unimportant priority: Debian including 1 source packages (gzip), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.
gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files.