Bug 62052
| Summary: | Does the netscape libflashplugin.so use an insecure zlib ?? | ||
|---|---|---|---|
| Product: | [Retired] Red Hat Linux | Reporter: | Alan Cox <alan> |
| Component: | netscape | Assignee: | Bill Nottingham <notting> |
| Status: | CLOSED ERRATA | QA Contact: | David Lawrence <dkl> |
| Severity: | medium | Docs Contact: | |
| Priority: | high | ||
| Version: | 7.3 | CC: | kmaraas, rvokal |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | i386 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2003-06-20 18:32:54 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Alan Cox
2002-03-27 00:45:43 UTC
Since netscape hasn't updated anything yet, no, they haven't. Putting in 'needinfo' as the closest thing we have to 'needsomeoneelse'ssoftware'. Should we pull the netscape 4 package from 7.3 final ? Without a fix its plain dangerous to go around shipping exploitable web browsers Killed for 8.0 thankfully Should this be closed then? Leaving open since the flashplayer shipped with 7.2 and 7.3 is still vulnerable to this issue. No exploits for the zlib issue in flashplayer have been spotted. An errata has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2003-026.html |