• [SECURITY] [DSA 5111-1] zlib security update

    From Salvatore Bonaccorso@21:1/5 to All on Fri Apr 1 17:30:01 2022
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5111-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso
    April 01, 2022 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : zlib
    CVE ID : CVE-2018-25032
    Debian Bug : 1008265

    Danilo Ramos discovered that incorrect memory handling in zlib's deflate handling could result in denial of service or potentially the execution
    of arbitrary code if specially crafted input is processed.

    For the oldstable distribution (buster), this problem has been fixed
    in version 1:1.2.11.dfsg-1+deb10u1.

    For the stable distribution (bullseye), this problem has been fixed in
    version 1:1.2.11.dfsg-2+deb11u1.

    We recommend that you upgrade your zlib packages.

    For the detailed security status of zlib please refer to its security
    tracker page at:
    https://security-tracker.debian.org/tracker/zlib

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmJHGAxfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0Rbig//cL9AXqGKkesEBDqqYD6ELAcaZv+nN4v3W/Yz1SHGg+tm/GHt7JXEdt8A k2sbP59+no7valVy5vA711ZbItt9gCPkVqQR26ESKMDZuH6BzLOojewl6FTt/15F 7MVl1QtAfijTo8sWWl+zdHZYkk4vqcrlNEL5lcNaPa1iMCEf5lSwrgawXAudhRLc QX11hv4fg9WRbzqcFVukY4INO+l98/BE0OJA0ia/cQVQuoLhVcNfLA9DJR+z1aui t9xPaXzA0oxpFAkEMqnxwE0qI4RTAip71aVvP4OhlosElNi/cveQQ+aK0s9KWX/F 4smrjMzYMeeKc69lTN+bJ6mxNAA5qbwCbGzvdi8YtIgf3Iz6Z0KKKnSfjQpCLDn/ UeNvxe4XbWhtJyu/GvSeeZAAd2f12dF/+v9r02gzUYHjD7XZ2ZMECuDH/Pw8+7EQ fGNuM0fMIJ+ad+6OBQnHWPDB2zKmCKEjaKQznC2Jg+jAy+R65u7I7n/YouZ8YgzM s3ct3JOFQ3rWfikIV8YpN/3ZCwQFdZakb32my40+o1brUBO0xMnZY2thZ/RUhIVZ bcqxHiZ2QkhI3/18Tw+8KO/cO85lljvyIZosu4IK8ecyQF88YQVYqv7ao602QEgg 4Fos9jTT/IeHKc+Jx2fUrQyL2Ol7NoIbZ/X8KM5LNnd2BfgqErw=
    =NzmF
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)