[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Double Free Bug in ZLIB Compression Library

Subject: [cobalt-security] Double Free Bug in ZLIB Compression Library
From: Barbara <thebizworkers@xxxxxxxxx>
Date: Wed, 13 Mar 2002 02:03:21 -0800 (PST)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

I may be wrong, but this vulnerability could turn out
to be a biggie... If I'm not mistaken, this effects
not only zlib, but most all of the following (if not
others);

* Apache
* gd
* libjpeg
* libpng
* libtiff
* python
* perl-Compress-Zlib
* perl-DBD-MySQL
* rpm
* openssh
* popt

I spent the day updating most all of these programs on
anohter RedHat (7.1) system.

If any of these are using zlib on the Cobalt's,
they'll all have to be updated as well. The chances of
hosing the GUI without Cobalt's support in addressing
these needed updates, is chilling...



__________________________________________________
Do You Yahoo!?
Try FREE Yahoo! Mail - the world's greatest free email!
http://mail.yahoo.com/

Follow-Ups:
- Re: [cobalt-security] Double Free Bug in ZLIB Compression Library
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] Double Free Bug in ZLIB Compression Library
Next by Date: Re: [cobalt-security] Double Free Bug in ZLIB Compression Library
Previous by thread: RE: [cobalt-security] Double Free Bug in ZLIB Compression Library
Next by thread: Re: [cobalt-security] Double Free Bug in ZLIB Compression Library

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index