|
As you said "not the first and not the last" ;-)
http://secunia.com/advisories/16137/
Ubuntu Fix:
http://security.ubuntu.com/ubuntu/pool/main/z/zlib/zlib_1.2.1.1-3ubuntu1.2.diff.gz
+diff -ruN -x Makefile.in -x configure zlib-1.2.2-old/inftrees.h zlib-1.2.2/inftrees.h
+--- zlib-1.2.2-old/inftrees.h 2003-08-11 00:15:50.000000000 +0200
++++ zlib-1.2.2/inftrees.h 2005-07-21 10:35:57.000000000 +0200
+@@ -36,12 +36,12 @@
+ */
+
+ /* Maximum size of dynamic tree. The maximum found in a long but non-
+- exhaustive search was 1004 code structures (850 for length/literals
+- and 154 for distances, the latter actually the result of an
++ exhaustive search was 1444 code structures (852 for length/literals
++ and 592 for distances, the latter actually the result of an
+ exhaustive search). The true maximum is not known, but the value
+ below is more than safe. */
+-#define ENOUGH 1440
+-#define MAXD 154
++#define ENOUGH 2048
++#define MAXD 592
+
+ /* Type of code to build for inftable() */
+ typedef enum {
|
another zlib vulernability
Re: another zlib vulernability
