homepage Welcome to WebmasterWorld Guest from 54.167.174.66
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Home / Forums Index / Hardware and OS Related Technologies / Linux, Unix, and *nix like Operating Systems
Forum Library, Charter, Moderators: bakedjake

Linux, Unix, and *nix like Operating Systems Forum

    
Linux kernel, Netscape affected by major zlib security vulnerability
New security problem uncovered
cyril kearney

10+ Year Member



 
Msg#: 130 posted 12:41 am on Mar 12, 2002 (gmt 0)

Here is the url explaining it.
[newsforge.com...]

 

littleman

WebmasterWorld Senior Member littleman us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 130 posted 12:57 am on Mar 12, 2002 (gmt 0)

The latest version of zlib (1.1.4) has the fix for applications that are dynamically linked. You could get it here [gzip.org]. I'll post when I come across some rpms with the fix.

littleman

WebmasterWorld Senior Member littleman us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 130 posted 5:41 am on Mar 15, 2002 (gmt 0)

Looks like Microsoft is also using zlib in some of there applications. Zlib is licensed under the BSD so they are within their legal rights to use the code.

The folks who maintain this code are doing a superb job at addressing this vulnerable. Check out:
[gzip.org...]

You'll find a list of programs that use zlib, and they wrote some scripts that will help you find the statically linked binaries.

So far there is just a source rpm available at rpmfind [rpmfind.net], I'm sure the binaries will be out soon.

littleman

WebmasterWorld Senior Member littleman us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 130 posted 6:14 am on Mar 15, 2002 (gmt 0)

Mandrake has a list of recompiled rpms with the security updates here [linux-mandrake.com]

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Hardware and OS Related Technologies / Linux, Unix, and *nix like Operating Systems
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved