kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/devel/zlib/distinfo
reed f381b34347 Added two patches for fixing possible security issue. 
The CVS security ID is CAN-2004-0797.

The fix is same as used by OpenBSD, Debian and Gentoo.
(Didn't see any reference to issue on zlib webpages.)

The OpenBSD announcement "zlib reliabilty fix" says:
"could allow an attacker to crash programs linked
with it."

And the Gentoo announcement says "zlib contains a bug in the handling
of errors in the inflate() and inflateBack() functions. ... An
attacker could exploit this vulnerability to launch a Denial of
Service attack on any application using the zlib library."

PKGREVISION is bumped and BUILDLINK_RECOMMENDED.zlib added to
buildlink3.mk file.
2004-08-31 23:16:23 +00:00

7 lines
341 B
Text
Raw Blame History

$NetBSD: distinfo,v 1.9 2004/08/31 23:16:23 reed Exp $
SHA1 (zlib-1.2.1.tar.gz) = a3d51efc98b87b9ebd1a528d726007b0cb08a612
Size (zlib-1.2.1.tar.gz) = 345833 bytes
SHA1 (patch-aa) = 98ad332ebd33ab7eaa4fc8ee9a4b9269ba823b49
SHA1 (patch-ab) = 1632590ca7c324d895686bab9c32cf104e9aa058
SHA1 (patch-ac) = a345342e69d09c1172ac5c968511f4657fdd80cb
Reference in a new issue View git blame Copy permalink