Описание
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| zlib | fixed | 1:1.2.8.dfsg-4 | package | |
| zlib | no-dsa | wheezy | package | |
| rsync | fixed | 3.1.3-6 | package | |
| rsync | fixed | 3.1.2-1+deb9u2 | stretch | package |
Примечания
https://github.com/madler/zlib/commit/9aaec95e82117c1cb0f9624264c3618fc380cecb
Report: https://wiki.mozilla.org/images/0/09/Zlib-report.pdf
Связанные уязвимости
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.