[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] Double Free Bug in ZLIB Compression Library

Subject: RE: [cobalt-security] Double Free Bug in ZLIB Compression Library
From: "Mark Carey" <mark.carey@xxxxxxx>
Date: Wed, 13 Mar 2002 10:33:09 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Well, this wasn't supposed to go to the list, but it did.  Just to
reiterate, I'm not the official public contact for Sun Cobalt.  Sorry to
spam everyone with this.
	
	-M.

-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Mark Carey
Sent: Wednesday, March 13, 2002 8:28 AM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-security] Double Free Bug in ZLIB Compression
Library


Hi Gerald,
  just to let you know, the Sun/Cobalt Vulnerability Assessment team is
aware of this and are working to resolve it.  This is a low threat level
right now due the difficulty of exploiting a double free bug.  Our
research indicates that the following might be vulnerable.  
<snip>

References:
- RE: [cobalt-security] Double Free Bug in ZLIB Compression Library
  - From: Mark Carey

Prev by Date: Re: [cobalt-security] MRTG showing wrong IN and OUT
Next by Date: [cobalt-security] Am I missing something here
Previous by thread: RE: [cobalt-security] Double Free Bug in ZLIB Compression Library
Next by thread: [cobalt-security] Double Free Bug in ZLIB Compression Library

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index