Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ USN-4246-1: zlib vulnerabilities

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š USN-4246-1: zlib vulnerabilities


๐Ÿ’ก Newskategorie: Unix Server
๐Ÿ”— Quelle: usn.ubuntu.com

zlib vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 16.04 LTS

Summary

Several security issues were fixed in zlib

Software Description

  • zlib - Lossless data-compression library

Details

It was discovered that zlib incorrectly handled pointer arithmetic. An attacker could use this issue to cause zlib to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-9840, CVE-2016-9841)

It was discovered that zlib incorrectly handled vectors involving left shifts of negative integers. An attacker could use this issue to cause zlib to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-9842)

It was discovered that zlib incorrectly handled vectors involving big-endian CRC calculation. An attacker could use this issue to cause zlib to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-9843)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 16.04 LTS
lib32z1 - 1:1.2.8.dfsg-2ubuntu4.3
lib64z1 - 1:1.2.8.dfsg-2ubuntu4.3
libn32z1 - 1:1.2.8.dfsg-2ubuntu4.3
libx32z1 - 1:1.2.8.dfsg-2ubuntu4.3
zlib1g - 1:1.2.8.dfsg-2ubuntu4.3

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

...



๐Ÿ“Œ USN-5570-2: zlib vulnerability


๐Ÿ“ˆ 24.1 Punkte

๐Ÿ“Œ Vuln: zlib Multiple Denial of Service Vulnerabilities


๐Ÿ“ˆ 23.28 Punkte

๐Ÿ“Œ Adobe Flash Zlib Codec Heap Overflow


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ [dos] - Adobe Flash - Zlib Codec Heap Overflow


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Adobe Flash Zlib Codec Heap Overflow


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ [dos] - Adobe Flash - Zlib Codec Heap Overflow


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ elfutils 0.168 zlib Compression elf_compress.c ELF File Denial of Service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ GNU zlib: Mehrere Schwachstellen ermรถglichen Denial-of-Service-Angriffe


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib Error inflateBack denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ GNU zlib 1.1.4 gzprintf memory corruption


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ GNU zlib 1.2.1 Error inflate/inflateBack denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 Pointer Arithmetic inftrees.c Denial of Service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ GNU zlib up to 1.1.3 Decompression inflateEnd memory corruption


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ PHP 4.4.2/5.1.2 compress.zlib File Wrapper copy directory traversal


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 4.4.2 file.c copy cross site scripting


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 inflate.c inflateMark Denial of Service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.0/1.2.1/1.2.2 inftrees.c memory corruption


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib up to 1.2.2 inflate.h denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Wireshark up to 1.0.2 zlib Compression denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ elfutils 0.168 zlib Compression elf_compress.c ELF File denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 CRC Calculation crc32.c crc32_big Denial of Service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 inflate.c inflateMark denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 Pointer Arithmetic inffast.c denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 Pointer Arithmetic inftrees.c denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 CRC Calculation crc32.c crc32_big denial of service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ zlib 1.2.8 Pointer Arithmetic inffast.c Denial of Service


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Oracle Java SE 6u161/7u151/8u144 zlib memory corruption


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple iOS up to 10.3.3 zlib unknown vulnerability [CVE-2016-9840]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple iOS up to 10.3.3 zlib unknown vulnerability [CVE-2016-9843]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple iOS up to 10.3.3 zlib unknown vulnerability [CVE-2016-9842]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple tvOS bis 10.2.2 zlib unbekannte Schwachstelle [CVE-2016-9842]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple tvOS up to 10.2.2 zlib unknown vulnerability [CVE-2016-9842]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple tvOS up to 10.2.2 zlib unknown vulnerability [CVE-2016-9841]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple tvOS up to 10.2.2 zlib unknown vulnerability [CVE-2016-9840]


๐Ÿ“ˆ 18.45 Punkte

๐Ÿ“Œ Apple tvOS up to 10.2.2 zlib unknown vulnerability [CVE-2016-9843]


๐Ÿ“ˆ 18.45 Punkte











matomo