Описание
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| zlib | fixed | 1:1.2.8.dfsg-3 | package | |
| zlib | no-dsa | wheezy | package | |
| rsync | fixed | 3.1.3-6 | package | |
| rsync | fixed | 3.1.2-1+deb9u2 | stretch | package |
Примечания
https://github.com/madler/zlib/commit/e54e1299404101a5a9d0cf5e45512b543967f958
Report: https://wiki.mozilla.org/images/0/09/Zlib-report.pdf
EPSS
Связанные уязвимости
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers.
EPSS