Red Hat Bugzilla – Bug 163038
CAN-2005-1849 zlib buffer overflow
Last modified: 2008-01-29 06:01:16 EST
+++ This bug was initially created as a clone of Bug #163037 +++
A buffer overflow issue has been found in zlib that can overflow
inflate_state.codes[ENOUGH] by 16 bytes.
It is possible to leverage this issue by creating a valid zlib stream.
This issue also affects FC3
Fixed versions are devel - zlib-220.127.116.11-5, fc4 - zlib-18.104.22.168-5.fc4
and fc3 - zlib-22.214.171.124-3.fc3
Thanks for the bug report. This particular bug was fixed and a update package
was published for download. Please feel free to report any further bugs you find.