This is the mail archive of the
ecos-patches@sources.redhat.com
mailing list for the eCos project.
Re: Zlib upgrade to v1.2.3
- From: Andrew Lunn <andrew at lunn dot ch>
- To: Peter Korsgaard <jacmet at sunsite dot dk>
- Cc: ecos-patches at ecos dot sourceware dot org
- Date: Fri, 29 Jul 2005 17:21:28 +0200
- Subject: Re: Zlib upgrade to v1.2.3
- References: <87u0ieqib3.fsf@p4.48ers.dk>
On Fri, Jul 29, 2005 at 07:42:40AM +0200, Peter Korsgaard wrote:
> Hi,
>
> This patch upgrades the zlib package to version 1.2.3.
>
> Version 1.2.3 fixes a potential security vulnerability. From the
> change log:
>
> * Eliminate a potential security vulnerability when decoding invalid
> compressed data
> * Eliminate a potential security vulnerability when decoding
> specially crafted compressed data
> * Fix a bug when decompressing dynamic blocks with no distance codes
> * Fix crc check bug in gzread() after gzungetc()
> * Do not return an error when using gzread() on an empty file
Thanks
Andrew